www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
301 Moved Permanently 0 B URL HTTP/1.1 www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/ HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 01 Jan 2023 07:50:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 01 Jan 2023 08:50:22 GMT
Location: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FoTG5Y2MjY22FpOaHA98rCLYPqZBfX2CIyuFxqZ%2FuzCuSA5SspEh20fn5nHadLZO8O%2BWVhTOW6sy1738aHbD8myhv5M84KIVxWOuNBnCCSf1u97Fs3G9fo6yyAzQrKVM0t5PcyTucA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7829a9e89ff9b4ee-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d3098a490e8d38d4150d961624aa7b64
6ecbca59302d0ac5436f1723137d42523f629ea1
158e277ba0220577b59b15e4017b6c27f59295bcd7e5d0e52d027dc7c4309f0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "158E277BA0220577B59B15E4017B6C27F59295BCD7E5D0E52D027DC7C4309F0B"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6804
Expires: Sun, 01 Jan 2023 09:43:46 GMT
Date: Sun, 01 Jan 2023 07:50:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0e93d32de9bcebd3483b40a8fed30718
7e1fe5db1f08b75a079780717e4f18ad76767212
4f0aaacfefd27c89225a1a0d2fbe778ec4f3369b5e4e1599255bf12866196cd4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F0AAACFEFD27C89225A1A0D2FBE778EC4F3369B5E4E1599255BF12866196CD4"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15960
Expires: Sun, 01 Jan 2023 12:16:23 GMT
Date: Sun, 01 Jan 2023 07:50:23 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6d6d99cd1201f65eeb7d437b62bad1f3
6d5e41d7a2786ccaad7c7276ecdd9411f8cbd6ba
db2b42007fc4ad126c8af8d7cce27af88947231d09ded56da33cfee3d2594e23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB2B42007FC4AD126C8AF8D7CCE27AF88947231D09DED56DA33CFEE3D2594E23"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4027
Expires: Sun, 01 Jan 2023 08:57:30 GMT
Date: Sun, 01 Jan 2023 07:50:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 01 Jan 2023 07:35:51 GMT
content-type: application/json
age: 872
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 7780c6b03204a265887c280612101b2b
83a212af07db9117802b907743b3d98218ef13e6
602565fb615f868e38f573550298db0ccdff4a66c38f2544214d329fd38c2ce1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5151
Cache-Control: max-age=117355
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:23 GMT
Etag: "63b04e8b-116"
Expires: Mon, 02 Jan 2023 16:26:18 GMT
Last-Modified: Sat, 31 Dec 2022 15:00:27 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 38YHmtFD6yLC8rbnneEndK0uFQQYYeeNYuo/TALGHjLyX8ixwA+/CdsTX/FXC3IFLLMRbwscyD0=
x-amz-request-id: 8NB1HPB60CJTT93W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 01 Jan 2023 06:57:44 GMT
age: 3159
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 07:50:23 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 01 Jan 2023 07:08:11 GMT
age: 2532
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash afc798d7819a9c19437d20a92eb6f6ec
badde0ed90ac423d5796dc35808a3cd6cec09820
f101fbf84795c278d89aafdadf23cca6c5010b372a48d39a5354555bfb961e61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5195
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:23 GMT
Last-Modified: Sun, 01 Jan 2023 06:23:48 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0ZQiO0TjnuJdklJUuXFtsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EF49Yfal0AxNkvxaU3/xTEaidKI=
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/css/widget.css?ver=1.5.5
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/css/widget.css?ver=1.5.5
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/addons/clan-wars/css/widget.css?ver=1.5.5 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
content-length: 0
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Sat, 07 Jan 2023 20:25:12 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 30972312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kTf%2Fmuq8zg4nREs9ZcLEe4SlMm3OmxROYZPU5L1JaIrBZc607R8OrT%2B%2FTIsKYcfzV0hYK%2Fd5G9AOVozudnYuv8alXzeXiN0pfyGE3cYFEAVI4fx1BDT%2BWp2k8BPydIWvceauCDK25g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f169d2b506-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 81c87a3f088331ce54f7b42d3815e4d7
93f7ac5fa21edef94d130988ab2833a36a8db38d
e493ad44a81a5773112904c8141b028cac7298d3cf1b44368291d9a0a3b800d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 81c87a3f088331ce54f7b42d3815e4d7
93f7ac5fa21edef94d130988ab2833a36a8db38d
e493ad44a81a5773112904c8141b028cac7298d3cf1b44368291d9a0a3b800d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.skidrowcodex.net/wp-content/uploads/2022/06/Far-Cry-6-UE.jpg
200 OK 20 kB URL HTTP/2 www.skidrowcodex.net/wp-content/uploads/2022/06/Far-Cry-6-UE.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 460x215, components 3\012- data
Hash a70ebf0c86999cdbb4945e06899bd2a1
dc4667598bac71fb7f394d02d28a897294248cdc
166cfdcd704ad1194102f5d010bdc684d0c068f30934a77e21f494df1e99fafd
GET /wp-content/uploads/2022/06/Far-Cry-6-UE.jpg HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: image/jpeg
content-length: 19588
last-modified: Wed, 20 Jul 2022 22:26:08 GMT
cache-control: public, max-age=16070400
expires: Thu, 27 Apr 2023 21:53:02 GMT
etag: "62d88100-4c84"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 294914
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oVIm2xYB702Pxu13Orv%2BpqOzu%2BXMgXCgNJkljwci4Ska0E73yWPsuFyLkLN4uxRTnjzIAdcybEE%2BfSeItPHnvmHVPACMMkLnmWN2LQslUCuBPNaIff%2FeuZ5Oxj3cHzrIIWKQYpOeEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f4dc2ab506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/uploads/2019/03/avatar.jpg
200 OK 59 kB URL HTTP/2 www.skidrowcodex.net/wp-content/uploads/2019/03/avatar.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, datetime=2015:10:04 16:23:37], progressive, precision 8, 736x786, components 3\012- data
Hash 19fbef7460c49b3481c57cc1102aeca7
9d5daf88ccc2e4b05c3d4e73733b1f2c78154990
16b8052f9b721c898b899c6e1e4b5d2c4190b745607e9f3a5676278707b58413
GET /wp-content/uploads/2019/03/avatar.jpg HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: image/jpeg
content-length: 58606
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Mon, 02 Jan 2023 20:38:36 GMT
etag: "62d880ff-e4ee"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 10235443
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FslCxiAb53qD7Sh7oMAWkU9xJQieqeIikteL4cH1cxjgrETr6ZIatMY7ZqLQ3cvbHzsZvF0ENoo8y5XRA1kx3%2BFDnKo0WgGs1%2BFcEXMv8eG2eAHSoaMNJlDteMmOqL8Zrwsm%2B4xmDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f4dc2bb506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/uploads/2019/01/new-logo.png
200 OK 48 kB URL HTTP/2 www.skidrowcodex.net/wp-content/uploads/2019/01/new-logo.png
IP
File type PNG image data, 767 x 99, 8-bit/color RGBA, interlaced\012- data
Hash 3927a87b7eb1db967c93304ddbff8a71
839edda3002bbd220823d7700b0e8dcbf18acbd1
085b6558baab0ac6b5251b0f57a1a2a072f7e73822632f9e3e4298af0a27de95
GET /wp-content/uploads/2019/01/new-logo.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: image/png
content-length: 47724
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Mon, 02 Jan 2023 20:32:56 GMT
etag: "62d880ff-ba6c"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 10235784
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wo2L6TztjZvOZp2GHqmsG3YpSYmysxH2NZ4%2FPgtzC3hr28uMGwBXupyKW%2BbmuTw0p093hvHQ1%2FeT18HnuAeADLZHPZDloomGMoFAjaMUoqB2M8WJudvODvDCgELo6%2BtMrZYIlW2MAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f4dc28b506-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d100ad6d8651971918db13c9696f4282
514dd875ac3e0f007e15e654a29190163e41fd51
f1e91a938ef9cec063a1fa70670a709669cc5ef0b2bca2e00957f62b4bb8cb18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1E91A938EF9CEC063A1FA70670A709669CC5EF0B2BCA2E00957F62B4BB8CB18"
Last-Modified: Fri, 30 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14794
Expires: Sun, 01 Jan 2023 11:56:58 GMT
Date: Sun, 01 Jan 2023 07:50:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d100ad6d8651971918db13c9696f4282
514dd875ac3e0f007e15e654a29190163e41fd51
f1e91a938ef9cec063a1fa70670a709669cc5ef0b2bca2e00957f62b4bb8cb18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1E91A938EF9CEC063A1FA70670A709669CC5EF0B2BCA2E00957F62B4BB8CB18"
Last-Modified: Fri, 30 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14794
Expires: Sun, 01 Jan 2023 11:56:58 GMT
Date: Sun, 01 Jan 2023 07:50:24 GMT
Connection: keep-alive
colognenobilityfrost.com/9e/55/c2/9e55c24c07205b6a363c94f4ff46ad27.js
200 OK 13 kB URL HTTP/1.1 colognenobilityfrost.com/9e/55/c2/9e55c24c07205b6a363c94f4ff46ad27.js
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37116), with no line terminators
Hash 2b8be6b74a1fb907daa91354a88d4825
3b41bbc7e5a08163177fdd2e379b48f764a6b8dc
05005c0891ed874dfd520b8ff3f7474048d3fd753fc407cae18d4d90c2ec18c0
GET /9e/55/c2/9e55c24c07205b6a363c94f4ff46ad27.js HTTP/1.1
Host: colognenobilityfrost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 01 Jan 2023 07:50:24 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9ba5aaf025af173cc253f6c7dafee325
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
colognenobilityfrost.com/2a/a0/d7/2aa0d74e87039503a470d3942c5f7ea4.js
200 OK 21 kB URL HTTP/1.1 colognenobilityfrost.com/2a/a0/d7/2aa0d74e87039503a470d3942c5f7ea4.js
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60145), with no line terminators
Hash 20b8fba991eecfd7b5830d77a584b395
4fa1f328db75daa9a3ecc44af6c48cf444d0faa1
ff011aecce01475c59747f942ce1d3b5101801bb6ccbf74cc30d647d8e2e0a09
GET /2a/a0/d7/2aa0d74e87039503a470d3942c5f7ea4.js HTTP/1.1
Host: colognenobilityfrost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 01 Jan 2023 07:50:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d4c643bedd8f216ba80b85473d8124c5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/confirm.min.js?ver=10.6.0
200 OK 597 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/confirm.min.js?ver=10.6.0
IP
File type ASCII text, with no line terminators
Hash a9cf87f006cb45f13f4e3cb605f2bc86
f257ca9817600d2bbb8815ccc81327c62cafa16f
eeec500e3d4011af1d1b73ca72ba1f8469df49f5dc15cda90da29ec87447b5d1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-core/js/confirm.min.js?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xYBht%2Bg8gP5cHpvpKsb4MBSTK0g865RsGYymvL4nTawrL%2B64momfPvyQvZ9I%2FHICZZbqUBR0onvy4U3kVPza1OjvIVdNbysrIMBb8lPg%2B3wsoRMeyC%2BNJzSqh7hZo8AAN%2BBCnS2qug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1aa16b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/jquery.cookie.pack.js?ver=1.5.5
200 OK 1.2 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/jquery.cookie.pack.js?ver=1.5.5
IP
File type ASCII text, with very long lines (1056)
Hash 256178bec0da80b007d5c9f95f50ae70
b727f0f40fdd46a31ecd0917766b22ed3682814f
d16205fe42aba8961759ee6976a72a684b1188c403dff0c56b71f6a17104c3e2
GET /wp-content/themes/skidrowcodex-main/addons/clan-wars/js/jquery.cookie.pack.js?ver=1.5.5 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
etag: W/"5f6754da-421"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30971599
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nEVZasAG4fMtbg5qeRKMly730wiH7bQDJRLGgiCCdKqScWXsbxIqTccSS2%2F2PVAAMfEheIcl0Ub3pZxbJ%2FejetX%2FgIlnssJSulLw4xOyp16OJTJiTLuMbRI5t1BFaU4nESyLnPPklg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1aa11b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/widget-members.min.js?ver=10.6.0
200 OK 977 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/widget-members.min.js?ver=10.6.0
IP
File type ASCII text, with very long lines (1198), with no line terminators
Hash 370f726afb3ee81d4874ada2bb319595
8d493cf6fc05f2b886edd06df1b0096c681df425
ea3f29cb0a43b62d87b8e9ed719f7adf4a6ea1e0451492336292712927f65f7a
GET /wp-content/plugins/buddypress/bp-core/js/widget-members.min.js?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e0-4ae"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rPq2TxdolQMwC9SUedbyt9fqqbmwMutASyLHaL6azVATnvbulYr8uINtw%2Fd5iMZSNEDFMBlUPqpHeUc2Q9QR7tuQ0r9B7WiQvpDOwDgkXPMW81IVgNssZX%2BIChXcjN7G07KLA%2Ff97Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1aa17b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tabs.js?ver=1.5.5
200 OK 885 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tabs.js?ver=1.5.5
IP
Hash 57188b7a79daf0c5b1ae5ac14d5f1be2
db53e96358ef3dca8bdc4a593e56ab333251e03e
7be27b6e63d109245008dd89fd0ec8ede0ee7ab05bba78b44be71d0959b45dc0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tabs.js?ver=1.5.5 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=31536000
expires: Fri, 22 Dec 2023 07:16:31 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 865912
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aQgLgvDLgJHvaiFvQ4NY5JlJ%2BPfd%2FW6EufBusX2%2Fc6eXyjrZ4QFJ3e3ybO%2FST0zJ%2FT7P%2BPuLxb64Hw5pGQytI1wj%2F9S0PayD3jI0%2Fr5CEJbSMuSHTXvrBaD9Yp9N24aH0sNPnzM3Cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1aa12b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a92938ba6a58bd49a9938a24e404cba
2adeb5279f5a130a4ddc05199bc7b0b197a3cabc
1779831cec3a72aa82e2dab789c043da6a7fa432ff75a644733b0ee5f81b965b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10426
x-amzn-requestid: b6ad4eac-168a-477b-9883-f77fffc6468f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d5ZfRG7XIAMF7zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad3c61-7766d0293ca12d6e2436ac66;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 07:06:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64b2KYy3x32_Z7bLzCIDOVtTsC2OsBCcF4kmfb_2ZhulTcspF5c0Uw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 13:01:37 GMT
age: 67728
etag: "2adeb5279f5a130a4ddc05199bc7b0b197a3cabc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/enable-jquery-migrate-helper/js/jquery/jquery-1.12.4-wp.js?ver=1.12.4-wp
200 OK 43 kB URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/enable-jquery-migrate-helper/js/jquery/jquery-1.12.4-wp.js?ver=1.12.4-wp
IP
File type ASCII text, with very long lines (31997)
Hash 520756e6c72c5e5b70173642bb385178
23019750381b00ae2ce9fd473b30c34059385eb6
3f09e925115b0e13718d97517a4a66d360e5ed372c6109edf54468a328e4c6a2
GET /wp-content/plugins/enable-jquery-migrate-helper/js/jquery/jquery-1.12.4-wp.js?ver=1.12.4-wp HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 11 Dec 2020 23:33:05 GMT
cache-control: public, max-age=31536000
expires: Thu, 02 Mar 2023 03:17:53 GMT
etag: W/"5fd401b1-17a56"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 26368351
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RmKjLRMRvgm08JKJgzydoSpLye7TX2AxTw%2BZBOqST1zxIrnsuXxOp94VDoqIbdRLFiSWXjxXp6SNIHQwpUVTn4fPHOIZuxrAgmzikuhkk%2BY3ie8jvauNKRKDo7RQztq9T0CkDGj25g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1aa0db506-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67b75ebf-7439-4cd2-bd89-000ec5f3aab8.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67b75ebf-7439-4cd2-bd89-000ec5f3aab8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c0dc083dd00810ff8d197c5ad7fb6f7
9e1ca8f2da2a53f7941b6869684b458a3c72a96f
6abddb307b4eab72eeafc413d0eb005773e5100120c4e074f7f3baadf12fa954
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67b75ebf-7439-4cd2-bd89-000ec5f3aab8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8537
x-amzn-requestid: 4e0f7a60-ab06-4494-984d-34fcacf63ba1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d_oI7GZfIAMFkGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afba38-6a6424991c4612dd6d3888fa;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 04:27:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HVSax8zutp54N838OPZjYA6MGIF5tCK3plkg9G7R4fg9jm71_Mdcvg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 23:39:54 GMT
age: 29431
etag: "9e1ca8f2da2a53f7941b6869684b458a3c72a96f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c820340d5ed98c9573754e3a749bf40c
09d31b45d4cc16c4d321e616e5445d9ba921a1ba
2a69c58358ae763ddef6603f783d7d25c465ff4d3777e6bd540c1b673381813a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8307
x-amzn-requestid: 978a4b33-aded-49d7-a4a8-2ff5ee894b02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0Oh0EhpIAMFyYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab2ad8-485bd7767c2ad3756ae98e7d;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 17:26:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bcdvyTj9Ys4hBF3rNrUfgzes7CLPom3b4l5S2NLa_8VM__qQdg9Vkw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:57:00 GMT
age: 35605
etag: "09d31b45d4cc16c4d321e616e5445d9ba921a1ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/public.js?ver=1.5.5
200 OK 13 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/public.js?ver=1.5.5
IP
Hash 9eabe25516dbee1e4dc5dee203b2e287
5fde6bb57d3f3fec9796dbb5204bf71bcfd041c0
e21b4dd23291427eff570201f095ab0fcc7bc6683ae3c01874fe040669702caa
GET /wp-content/themes/skidrowcodex-main/addons/clan-wars/js/public.js?ver=1.5.5 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Sat, 07 Jan 2023 20:34:07 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 30971776
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d4u5m764Hk5vJWhzgWBhLVwfMWTX4oPWRwWCpiVDYeRVUmp0SxR%2FfA6qHygRYORSbZzfW%2BOKXrU8KcQbzM%2BTof%2FLWTpNNmzMaj1xTcmZlltBhBHeRA%2Fhv6fn%2BYAX7JmSUtlpujyW8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1aa15b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tipsy/jquery.tipsy.js?ver=0.1.7
200 OK 7.2 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tipsy/jquery.tipsy.js?ver=0.1.7
IP
Hash a2d08bcc3f8d7ad1759b6ce14804bf41
31892cc8e0ae445d717bb0301ab0e26b1dd1a35f
3f2a61301d3aba00a7bf70af6bef531ebea5aaad8fc2f257c98e2e35d7434c7e
GET /wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tipsy/jquery.tipsy.js?ver=0.1.7 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 21:32:26 GMT
etag: W/"5f6754da-1113"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18008278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FZQds3UkJxWs1%2BuoT5YJncbUPvT3Efh5wnoIIELnckF1WVGDkazt2I2TbVVEiOigdmKmOl5fQy2b0N4%2FlpGJgQPqu3S4brZ9VGk9wGnjogyhpvegM48WiCl%2FemqME7CcmcBmeRN9eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1aa13b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/defaults/default_profile55x55.png
200 OK 3.5 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/defaults/default_profile55x55.png
IP
File type PNG image data, 80 x 80, 8-bit/color RGB, non-interlaced\012- data
Hash 629e1ea8372c50a56d2cfffa7c67bb11
5097a26e49dbbabdcd18ee7a26c7cb1ab2874441
e337d6a37cbc8de6b9bc6f94f2862766d2442013875d55ed02bb3b7016ab9b6f
GET /wp-content/themes/skidrowcodex-main/img/defaults/default_profile55x55.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 3495
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Thu, 26 Jan 2023 15:36:23 GMT
etag: "62d880ff-da7"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 8180023
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fMdGLjPUyGhZEYVf7Dnj4bzeD%2FIiHWNK6O0ahd2m5vQbNOh3ogA8BYTCn8FV3S0spZmLNVwwl03NFebR%2FEGBERnz2Ji1J5%2BgANsa9TC9MWzu5U%2BKziWAHMFvCxtlLETif9pjyBI7Lw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f90ef5b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/uploads/2022/05/ashenfew1-1.gif
200 OK 38 kB URL HTTP/2 www.skidrowcodex.net/wp-content/uploads/2022/05/ashenfew1-1.gif
IP
File type GIF image data, version 89a, 280 x 280\012- data
Hash 72b5f79b4a66b04bc15a854d841c6252
1187c807dc6d841376480c80ab84ba7021e9c93b
43bf1bb21c1f1b6d5cb06fa364aea623afc5566abd6f8d38753f2a0973b2b31f
GET /wp-content/uploads/2022/05/ashenfew1-1.gif HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/gif
content-length: 38405
last-modified: Wed, 20 Jul 2022 22:26:08 GMT
cache-control: public, max-age=16070400
expires: Sat, 29 Apr 2023 23:19:23 GMT
etag: "62d88100-9605"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 116931
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xpOVU5Ss6LObpB3Tb2LD9BR88HGjb27mbaSRioszmwAC8rSIGWcyDyU%2FdOb2UtoAYLzLBWz9SkC8yQM7v1OjYM3daMtGbLWzc%2BpdaQeA8nEdPnnuujZalvyubRnF18k7n%2FIEXzzCpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f90ef7b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/js/utils.min.js
200 OK 32 kB URL HTTP/2 www.skidrowcodex.net/wp-includes/js/utils.min.js
IP
File type ASCII text, with very long lines (1829)
Hash 01960caeeaa2af23d39e1a492abc26fe
e3f4c68803ed8698535a1c7ebc0f4b14e6f04680
b69876dcdedbeaeece4a8d7de4c9a3c5efcad772b40839a28b49b77bdd24b883
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/utils.min.js HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 02:18:47 GMT
etag: W/"613ac087-748"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30976996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YPq%2B60vm0f%2B4cyflVrwVJrNV5vvO0RTCN3Ti%2B%2FPQkWn4obJ51gknxiCAoA30hLGqyrKn%2FEvzke%2FFGXoK34sCpiihCKIpMoSBl%2FpWVRZ9l5dxMjSPBdG0b7T5geGRx6Y0xKfjKAb%2BZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1ba26b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/uploads/2020/09/thumb-205088.jpg
200 OK 11 kB URL HTTP/2 www.skidrowcodex.net/wp-content/uploads/2020/09/thumb-205088.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash b47153bf985097917265f15d20407a83
74225d187aebc7559d7fbe92b842fbbeb56acb97
47a96eae914473e1df36aa6e092ea20f750f106ab2538b7bc7511b8b1dedff90
GET /wp-content/uploads/2020/09/thumb-205088.jpg HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/jpeg
content-length: 10896
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Mon, 24 Apr 2023 13:52:53 GMT
etag: "62d880ff-2a90"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 582927
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LFVAmU8ZnazyIdVvkEy9diNIXoWWpKAx1R6g8VKx7fkO5m7MGioWViUHCtfbastfA8klGcBmGa0DiQbuHJzo61TdvfoJpCY9CMpw330g%2BpY43%2BpSOf5r%2Bf3t%2BwaESKl20dA3lAZTuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f90efab506-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 1e3af3f27d3188735c40aea326d4673a
5a2235eacbdb326976542d4f8fa310fc0cb9f945
1313d905671f2ae4b89bbdbc9296b371abc45c93e9c83cd5762bb198cd88b471
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:25 GMT
Etag: "63aff775-118"
Server: ECS (amb/6BB5)
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 1e3af3f27d3188735c40aea326d4673a
5a2235eacbdb326976542d4f8fa310fc0cb9f945
1313d905671f2ae4b89bbdbc9296b371abc45c93e9c83cd5762bb198cd88b471
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2666
Cache-Control: max-age=92573
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:25 GMT
Etag: "63aff775-118"
Expires: Mon, 02 Jan 2023 09:33:18 GMT
Last-Modified: Sat, 31 Dec 2022 08:48:53 GMT
Server: ECS (amb/6BA4)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 1e3af3f27d3188735c40aea326d4673a
5a2235eacbdb326976542d4f8fa310fc0cb9f945
1313d905671f2ae4b89bbdbc9296b371abc45c93e9c83cd5762bb198cd88b471
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=89908
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:25 GMT
Etag: "63aff775-118"
Expires: Mon, 02 Jan 2023 08:48:53 GMT
Last-Modified: Sat, 31 Dec 2022 08:48:53 GMT
Server: nginx
Content-Length: 280
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-cookie.min.js?ver=10.6.0
200 OK 28 kB URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-cookie.min.js?ver=10.6.0
IP
File type ASCII text, with very long lines (1229), with no line terminators
Hash 65ce33728ba11358120b98f5b20bddf9
da6d23973465946dacfd93da88491fb326f15929
9212d4188be41b9a8a4b93472b02379bd324169f92467e7fd7b5b52cf9136c56
GET /wp-content/plugins/buddypress/bp-core/js/vendor/jquery-cookie.min.js?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e0-4cd"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B8p%2Bof8i3LtjUE%2Fvj%2FJ3EzTpI65C5qYuDni8XwRd9Qd58JZKowkG7%2BW2fH28aEoPIDzuzJ0HTHr5n1YLxFuNDgnRrzJREjpJFScCXX7DoGZihKMJmJrfcvEZ21OGLc4%2BcHl4kCMJmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1ba1ab506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snow_background.jpg
200 OK 11 kB URL HTTP/2 www.skidrowcodex.net/images/snow_background.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x750, components 3\012- data
Hash 40c41d1b2c8dddd3a403c42907cb13f5
ec3e345193aadc7a8d52ee112dac42dd58c11cbc
53360b87b681679cbaf36c0a225485c116a2c847a08ae5046db08534f04f507e
GET /images/snow_background.jpg HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/jpeg
content-length: 11061
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-2b35"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lCA%2B0kFcTW5UDwRXqnh3k6B80p06BUkJfvjSMn7UQwxWNL%2FaQsjW2oCKmv3ES7vS2Ab8cZwjxXvjcysJd2MSE13lz0a0lc1Z2fW5FWvpR4Gsi8mIHuEahyCddYS5YxnC2OzxTxebUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa3f95b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-templates/bp-legacy/js/buddypress.min.js?ver=10.6.0
200 OK 8.8 kB URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-templates/bp-legacy/js/buddypress.min.js?ver=10.6.0
IP
File type ASCII text, with very long lines (34008), with no line terminators
Hash 4ec242085812bef413b985da5755ff5d
79a5dec76b4481d8b055f4e2637c08d0f03cde4c
a855a646c6190a8b5c7f29e8a5912075988cf8a39ff9c7e7a0f7b22eb3b0b904
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-templates/bp-legacy/js/buddypress.min.js?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:25 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e1-84d8"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E9yoBpq92uuvyDHNvd%2Fbvq4MGnkViixcLptp0Jjdf2W4UPlhWWIOyQoIkKEUKfV84EHZ%2FstXs2Nil0%2Fy3if%2BA7xpEcp9rAM5X706oZnTtzvuQzOaAEihYxlg0F34MP4i1XMgngJJBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1ba25b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake02_10px.png
200 OK 334 B URL HTTP/2 www.skidrowcodex.net/images/snowflake02_10px.png
IP
File type PNG image data, 10 x 10, 8-bit colormap, non-interlaced\012- data
Hash bc9c9bf61affe4c93fb7282c4b943c8a
62b6ed44a0902a668f2a07c3475ec6dec896012a
a6ede2a0efe3a65f3f624647daad88a59d048888bea9c976188e9a8b229f837c
GET /images/snowflake02_10px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 334
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YUQM7MyghYxzkhlQKu5C7XxjlA1%2BWA6TbHkiU%2FFuRm2sUc2%2F6P%2FRSa9ZXjAN0iPwpp8NrNu903CoVvhCtGVq2XQsMRLoLyWETEsiT5p8ow1Cn3Dh%2BgrUvAT6%2Bj4jZaDTj0SDOFF9jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9fa5fa0b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/js/plupload/moxie.min.js?ver=1.3.5
200 OK 29 kB URL HTTP/2 www.skidrowcodex.net/wp-includes/js/plupload/moxie.min.js?ver=1.3.5
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c88a27c850185c4674b9f297ceedfc19
99086406734dcbc4ec6984ca8982cf982275caf6
70c6a9fb0727c038d684ddfcf9020c3e7211ae87ae7fefbb4f1c8b22385f1053
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/plupload/moxie.min.js?ver=1.3.5 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 31 Jan 2022 17:44:17 GMT
cache-control: public, max-age=31536000
expires: Thu, 02 Mar 2023 03:17:52 GMT
etag: W/"61f81ff1-15666"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 26368351
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QSiAr0KwKFy7M1gIE%2Bz%2F4NlAF5Q54imqrbwAXvdniJGCFT7LeAgqMT%2BdWRybyDMGGrrpDzJt1ZJeBFBwHLXiwK0kFxzzYjnA0P%2BiUDPNE%2B0woFcs43rfZQHvnktzU6Q8dC8meIUlRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1ca27b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake03_10px.png
200 OK 344 B URL HTTP/2 www.skidrowcodex.net/images/snowflake03_10px.png
IP
File type PNG image data, 10 x 10, 8-bit colormap, non-interlaced\012- data
Hash d1c79ba94bc0b0d43dff5f54ae6d1d73
90d8c7448e664074fd7a5d2c89e6e8eea454fe81
6fa872fc9f5ccb41661dbf5d04e6c3f3c3c175763e6fd3712f0fc2acac058fda
GET /images/snowflake03_10px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 344
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iKjKT88hw2JWuavzW86QZftI9GRyxvVIkZ%2BDlqZ2ecayLzezARrw3x66L%2FQ4DdjvvzkWvdwtq0iEbwxExBDmVj4yDfeJDGfOuj7rXk%2FcMOktg6PIRpATDyfUqP5kWXeJ5VTsZty3Lg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9fa5fa1b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake01_20px.png
200 OK 726 B URL HTTP/2 www.skidrowcodex.net/images/snowflake01_20px.png
IP
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash ce9c81d133c29dd70153b847592571cb
2b9c11411cb4caaa974521bfc3c64333bf43e877
f3b26500e0ce7081c6b46f3d7b59b4e5bcb8090f96db4a3b6def258d7aa74dac
GET /images/snowflake01_20px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 726
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I6%2B%2BoJvrDSV%2BcuPqLmgMsdXQS2l0%2FTH5Hn5mcUWqzcQhMCPEFrvHr%2Bg2jRJCm%2F0KqVK%2BFjqveSISRkG1%2BP40Xv7Et9bttpkavg%2BwiKnQVFWVdaNLlvSFm9bzT3APvwiOZvr5yYHWng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9fa5fabb506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake02_20px.png
200 OK 842 B URL HTTP/2 www.skidrowcodex.net/images/snowflake02_20px.png
IP
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash 1ce6c5cb32e5a876c0704a04f4ff537a
348b64e6ff5770780640020ff2f9de9f8d0abf5c
7fe229af626684d7dfa323bc7515fd3cc4ded7e92d013ad1e69d87996e13d120
GET /images/snowflake02_20px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 842
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2FgSFs3QxxNE8lR1SfkfnpwaUm0fW6TjgmoIRzr4WNdYHw9RkC1P3sWfewQlNzzNWjNwRl7OZi5codNvy5UB2%2FeybtRgAKVG%2BqYpVbp0u%2F6HBrLP5f%2FN4Jaoi6eLDBB9kGCE4fl50A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9fa6faeb506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/jquery-query.min.js?ver=10.6.0
200 OK 975 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/jquery-query.min.js?ver=10.6.0
IP
File type ASCII text, with no line terminators
Hash ab0711c8ba718d36aabe11702190577e
1a848302a4f31a77b5235278bd4e858e7dfbf73d
04331256217807184de58342cc850ebf56ea1a89fb2df53ec79aed83914195e3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-core/js/jquery-query.min.js?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FsXAYlqfNqf6XtQahSJnUqJ%2F%2BbxwtF43G1FrSJfqmOwH6NrxkKfgFEzqoQJS9STUbpRzKseXOzZ7y8Jvem3sbzRjPHV1R5V2FepqZ4pg8B0NkO5EgHYhw4cKF8S4ePZfJ8LjvJsALQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1ba19b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake04_20px.png
200 OK 712 B URL HTTP/2 www.skidrowcodex.net/images/snowflake04_20px.png
IP
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash b6b521216e6154ac245126546a6a0ab3
1444d2afcbbe4dbdeb32c21f1058792fb47f6990
5a16c043da55af526f8d74150939cf67eb17d988e594f530a765fb2939cb8186
GET /images/snowflake04_20px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 712
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gv6bAcIq8xExw7mI1wbbsRzFxC%2BTZF2UZ6YWFjABPkqWA%2B2hmuSPl6Ur5Nb7QqnznoHd5cHG548UGBPVAahmF272hMxeWKBdWYKTmCsV4tTp5tJOzSklwCyvsiywURIv0yIdpgS5kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9fa6fb1b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake02_30px.png
200 OK 1.4 kB URL HTTP/2 www.skidrowcodex.net/images/snowflake02_30px.png
IP
File type PNG image data, 30 x 30, 8-bit colormap, non-interlaced\012- data
Hash 48fdc5664f62e4cb1e33ffb937718a3c
42025fa9dfdb3f3f8c9d5a523c6c768bd7ec7a31
c506da64134d23aaa2a1128ab0319b8b0877e33067c34ef8aa5f200bf6641159
GET /images/snowflake02_30px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1361
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-551"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cJzVd5%2BaxEpxoJSUe5OD1z%2BdtG4FR7FgmyxrB3cY7a76jw1m0oqC7sZ0aDv%2BLCODlB2AhHEQcbJ0caHjaiqyLvJATi9Jo%2FnQeXULxgwpdCdsbi5X6tZYyafECEugO%2Frx4wlfwhvOVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa6fb9b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake03_30px.png
200 OK 1.6 kB URL HTTP/2 www.skidrowcodex.net/images/snowflake03_30px.png
IP
File type PNG image data, 30 x 30, 8-bit colormap, non-interlaced\012- data
Hash 0d332da36293a794bd35ee8b1d801fed
e2fd302e79829e195de14a1bc7f853370b343345
7cdd375a6807260343d6a955326e29ba7e730cfc1320013bc9763213ce9ce627
GET /images/snowflake03_30px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1592
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-638"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PK7lDNksokUhCsmMdUexyS2qAiLiGsE%2BCdhywc0T0fYl59MR6hfbZm9EFoAcf6IQPf1jCFHrzwatncKXVue%2Fv01A7xcBUUjHEuC6%2BiOmzQ39RN%2BDxzSVJOM2Dhjynw%2B15ddc3tIzEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa6fbbb506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake01_30px.png
200 OK 1.2 kB URL HTTP/2 www.skidrowcodex.net/images/snowflake01_30px.png
IP
File type PNG image data, 30 x 30, 8-bit colormap, non-interlaced\012- data
Hash 0df89aef15dc35648f7e02a4aacfa1e1
ad9fbc5921e236f729521e560300316ba7dbbecd
a75e792ffe48fb62d2c171e7cfaa647dc3132294dd2b146529e454061aa013c7
GET /images/snowflake01_30px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1236
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-4d4"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NBwWiBhJitrG83BgmAzXBWkNmQtlgjmhVGTltm3cmHyK8NX3GsOQQjZCdVzvVrZI%2BFa0J5bt77C5xSa3dRNezuj5xC7O7CA3ZCPlChfC7Yghfo6WbqVGtFs6XZCxzhW6vWEYF%2FQN4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa6fb7b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/js/snow-effect.js
200 OK 5.9 kB URL HTTP/2 www.skidrowcodex.net/js/snow-effect.js
IP
File type ASCII text, with very long lines (525)
Hash 2fa124bfc10e46c0d371243f01eb4073
7f6ab4d4f00f8852991420874249f71d69d06d71
403c62b2ed6fc0a2907c1463881fd75e207a9cee8c9f02e80705d02726447882
Analyzer Verdict Alert fortinet Malware
GET /js/snow-effect.js HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Tue, 26 Dec 2023 15:18:59 GMT
etag: W/"62d880f3-2f96"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491359
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tCLMixlZR6qDTd5CipctP7DKa9v2YkuQvXKtPBBRAMARgLS8syDCbRBiUtjqKlSe1BWPuE2g68JYmSabA5Cx9o3P%2FPUGvT7HXKJ195KJuKyuF8%2BO2xTyBrSSYarUJgsRIcG07jdWog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1ca2bb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake02_40px.png
200 OK 1.4 kB URL HTTP/2 www.skidrowcodex.net/images/snowflake02_40px.png
IP
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash cf76e13140611e66e1efd48eb26ff77f
b057027bf92d06df3cf4f94e62f6d0ea981b13ab
a81d7591ecbc6e7ffc7b24a925e17a2be317464c484fb785e880064352bc5a25
GET /images/snowflake02_40px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1407
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-57f"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2xvfC5OdroviqJPDTlPnksSm54Kd%2FvPMysx396wd5YGomR6E%2FYo%2Fb9EW%2FpyATdWL9MkqaIEeBJwhlqbzKDOVNWIAQVa5coeo9iILtPlZVl6u3P0AgowtXUH4ndmuxpS%2BRE6uLkWF0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa8fc9b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake03_40px.png
200 OK 1.4 kB URL HTTP/2 www.skidrowcodex.net/images/snowflake03_40px.png
IP
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash e55d72c363384ed833745cad1ca0d0ad
4836937113eca3fbf3107c95b9690a973a3bfa77
674f614e41035c193b27c40b0387d50d733be3e03748a29abee0699089115f11
GET /images/snowflake03_40px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1376
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-560"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N7l5fIdrl%2F3IVsPToqXuWZR5khunx6qhyWYj68HD5y9aov60CgeE8HRtUON1W97pKE7jBckn%2F4QaQNBRgNG5asr7zpMkk6RgfyQfFWFVN9DhmDdU%2B%2BFuTxkKBxTNevWvaGYzuSQ1Ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa8fcbb506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake04_40px.png
200 OK 1.3 kB URL HTTP/2 www.skidrowcodex.net/images/snowflake04_40px.png
IP
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash 16a3c6bb7c63044594358ce5f45b805d
a789cb66b5bf51b6bdfe664475f90638fcf294a3
3f3340d7ba9c2658ffa5077682cddcbe7e2d51596e79914939795ed06ac0e6cd
GET /images/snowflake04_40px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1320
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-528"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LcM9VAU2XSLv81vjfXKkTGVK%2FIYEwwVmktHr4%2ByCdM79u5%2BSTEJh%2BG5Og3PrbSk7q%2FtpHCkBf6P97R9mm2g9GkogRWh1UaK5yPHLGy%2F4kwjL7tksQ9VSe3NUZOONZ%2FRT6zDB3plYXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa8fccb506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/images/snowflake01_40px.png
200 OK 1.3 kB URL HTTP/2 www.skidrowcodex.net/images/snowflake01_40px.png
IP
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash 0aebdf2ff2d52ae12237f4708602d16a
122d033c2d3b1089c5a8c053191be414ffe44b0f
eaf19c76be4fa3e6c876115c54c388b98aa992351168409517650eb9e1242e76
GET /images/snowflake01_40px.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1340
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Tue, 25 Apr 2023 15:22:51 GMT
etag: "62d880f3-53c"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 491128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fskqg6JO7aWb9JaUDI%2Bz8M8UvmPgFOJ5xXrSym1zosiYL%2FWewvBqUh34LOjNIiqxXiFQPS7ThG%2Bg8zC2fFxRRAL9XAOhbPvvBxRSDAvHU4uWHI8y5FBoMETLxTbwJcU7RvVWMnWfcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa7fc7b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/dots.png
200 OK 977 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/dots.png
IP
File type PNG image data, 6 x 6, 8-bit/color RGBA, interlaced\012- data
Hash b4182163c3a6206ac2b16047c9c5728c
dfe78be5b52f41b77559972c0910f55ea0cd012a
941a6bc0a17c76ca67ecf18377953295380b4e01d544f5e6650d1c7df5d7bfe3
GET /wp-content/themes/skidrowcodex-main/img/dots.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 977
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Mon, 02 Jan 2023 20:32:56 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 10235785
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2%2Bq9YLWZPkT3YgcczLlmGZtdjfjvpztVwYddMA3bFxB%2FTMTzBPYsIgWGxUHyONjKmk1zYI3yUsT4gtPXSCeAjAEdujARPu0YY64YgG6SAOeMnrffXdHqdMjYtRKLCZyCq1Ri7r9bkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9fa9fd4b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/stripe_dark.jpg
200 OK 2.5 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/stripe_dark.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 45x45, components 3\012- data
Hash 831d60d44857d1610edc3cc99e5c966a
b9300a2686cbd8d151e704985d7a2b9756a2d7d1
f2f834565b74e137eaccc783ab6b6e98bc23c653f7610b5eb7a8f74e69fd89cf
GET /wp-content/themes/skidrowcodex-main/img/stripe_dark.jpg HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/jpeg
content-length: 2518
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Thu, 02 Feb 2023 01:27:10 GMT
etag: "62d880ff-9d6"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7626167
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2BHKH3uCjLzFVwW0V%2FMRRfDnzYZsK3LKXvnOj2EDRzTRVSqtzxjFlEm3NxCKAaVt4d8gJvTeMLLnZSx6u9puFHiu0BHwIuHEIojTqu8KqBLf%2B59QFM2CBOdGPqA03j%2BD2YQG%2Bx6E6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9faafe4b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/lock.png
200 OK 17 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/lock.png
IP
File type PNG image data, 96 x 110, 8-bit/color RGBA, interlaced\012- data
Hash fecbdc317a3aff1c4d00e72b38282968
238bec1cac1ed867e9b4d0ac6bcca911eb03fec8
babd158fc7016951651bb505e64df065de6136b972abaf3c6fe2deb7824b0c2d
GET /wp-content/themes/skidrowcodex-main/img/lock.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 16785
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Mon, 02 Jan 2023 20:32:56 GMT
etag: "62d880ff-4191"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 10235785
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bCgYs4dDoORu46Sh3tPMfs3WIHijP6v7TX%2BubxWOhhEzAC%2FS9D5wnO6%2B4zzBxoKnGNuyPEjfoAVR5dOg%2FvJG2fdLwPqmx0e557SuxO2e6tA1v6su0Fdq5aFbh0Ihmi0IeUE7JFWvtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9faafe3b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/tip2.png
200 OK 1.5 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/tip2.png
IP
File type PNG image data, 22 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash a4fc2c7b8edaccfa51b3e4f868629561
7e57dc0a0181425e5e057a7c9b0cad0b4b330e5b
c953c054e31937a34242e5cd9616f27b52bceb547b1a872b04d600e6c4560b26
GET /wp-content/themes/skidrowcodex-main/img/tip2.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/tooltip.css?ver=20160930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1490
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Wed, 01 Feb 2023 22:21:54 GMT
etag: "62d880ff-5d2"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7637283
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dp37CblUFPsZdsI0P3WT76PXrcXXjZYslE9VhZ%2BU8uwEuvkkGkwzIol7lPj6%2F4St0jC3VI5nlSFkj2h40CWutO%2F01LerWk1fjnQRtEFV%2F4J2kD5lORCCJESdFi25mCLQKwfW9CUd4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9faafe6b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/ticker_bg.jpg
200 OK 6.0 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/ticker_bg.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1170x35, components 3\012- data
Hash 94038b94f5429ac15e33a18afb5095bc
0866853c03bd768ef298f06ece3f3d3c516146d1
f2881f0e963bb5d4d3a598c589943bc451d0d3723035e870fb7f91845fd44f6d
GET /wp-content/themes/skidrowcodex-main/img/ticker_bg.jpg HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/jpeg
content-length: 6019
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Wed, 01 Feb 2023 23:06:45 GMT
etag: "62d880ff-1783"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7634592
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4LODJHjJhUu9KT%2FNMYnp4qnKTn5UV4M8AGgkmzagCmjBXj6rhJkyDBqGaoqmfCCYyWEyyM4n4BVWQpIgq%2FUcf2QKty8d6MkQif5RN4ChM%2Fj36BmLpK%2Fk0qIfvTBNiXM35SrIMZMGtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fabfe9b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/stripe.png
200 OK 971 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/stripe.png
IP
File type PNG image data, 40 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b52273dcf331bec4fe08b9e632954442
e074dbed6c6ab89aa68dd9559cb1e50708ec6f2b
9526a40cc4b71da821528670149dd1eeb4991e1ad9ac9a5dd50fa0ba98e0b0da
GET /wp-content/themes/skidrowcodex-main/img/stripe.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 971
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Wed, 01 Mar 2023 17:34:34 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5235288
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zC7dp87j4a7dGdzhtDk65jIuZ1SM%2B2cl%2BuMAak9rGteVWzNw4IP5LIVyz03airFQHDjv5jP6W8oRyALHkbl87VhXSq4SqVyU1GCLjncOE1pT7xK60b%2FV8wUG6DdgVq%2FoLci1DChOHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9fabff0b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/css/blocks/login-form.min.css?ver=10.6.0
200 OK 28 kB URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/css/blocks/login-form.min.css?ver=10.6.0
IP
File type ASCII text, with very long lines (727), with no line terminators
Hash 3980ae30957fb65d192f95a462552ee9
750e7c27131c0a5a404845a3f1413b10cf6dc03b
e4b099c6e99473670eb259b9935ecc4edcacc505a5b9aa344c38f3bd8d113d7c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-core/css/blocks/login-form.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:50 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KFqNuzW2tamW2hzTGvBLJC2NmhlSVA0BL5YsW3plOkiSbDRq%2BKqEWVtjyrAamlWXH4ZX7M%2BCsNJNdrQup2vuoyGYfAdLTsHlZyflkyVPgU7mQ5JBZpcaaCW2Kq4aeor3CgWeeifKUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f149a2b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/fontawesome6/webfonts/fa-solid-900.woff2
200 OK 154 kB URL HTTP/2 www.skidrowcodex.net/fontawesome6/webfonts/fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 154228, version 769.768\012- data
Size 154 kB (154228 bytes)
Hash 55b416a8df21f9f987aa352f10d1343b
2717f3f58271f2f2e6120d9937c7227002656d34
d76fb4e841748a3f6bc63efa23156e02631c283bf41f84efcbdaf339ea3e1b73
Analyzer Verdict Alert fortinet Malware
GET /fontawesome6/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.skidrowcodex.net/fontawesome6/css/all.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: font/woff2
content-length: 154228
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: max-age=16070400
expires: Wed, 01 Feb 2023 21:43:32 GMT
etag: "62d880f3-25a74"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7639585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zYEg%2FPrUBvAXu3wJYTeu8kiOb%2FgYIBNGNougi%2Fh3E18EbflszJzB0RGTUUZXykgSykgQuOTsMGB6FPl%2FjtasskQFnrD3HnQyqnjki57rHk8bPMXO2biQT0DJEUl%2BPp7DUlF2dtgaRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9facff2b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/fontawesome6/webfonts/fa-brands-400.woff2
200 OK 106 kB URL HTTP/2 www.skidrowcodex.net/fontawesome6/webfonts/fa-brands-400.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 105536, version 769.768\012- data
Size 106 kB (105536 bytes)
Hash cd2b4095e9ce66cde642c3502a4022d9
a280ecdddd14695fad22599301ab03adfe5224c0
404c746c8f7e3f9b7611a8f23d908c1a32a5c972236b9d89bb68b05d9bf4b905
Analyzer Verdict Alert fortinet Malware
GET /fontawesome6/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.skidrowcodex.net/fontawesome6/css/all.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: font/woff2
content-length: 105536
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: max-age=16070400
expires: Wed, 01 Feb 2023 21:43:32 GMT
etag: "62d880f3-19c40"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7639585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ux%2FCTtNtOmGD%2BWBmmOqgwDjdtzHd%2BF6868vL8zS0X4KZsWG9ub3127zL%2F703QajHMSWBtF%2Fb3apDeF%2BhZRfVEHEGZ0sjTpy5ObRRYGsYsNCBcA1AYSVGqt2BFfOlG7z9eNPxfu2veA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fadffbb506-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dbfef74ce76b23c224b757987732f8dc
4002319b0161d6ea3849c784ace79f577db288b2
406af203f4e69f59113802dc7ec297934b1e87c7101c5c5e3ee686c71d19b1b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.skidrowcodex.net/fontawesome6/webfonts/fa-regular-400.woff2
200 OK 24 kB URL HTTP/2 www.skidrowcodex.net/fontawesome6/webfonts/fa-regular-400.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23940, version 769.768\012- data
Hash e8a1ba418ee6d897d1339ef22e6d8e60
379ca48f70f3d4f79f8bf1079881c7c5af4f44a4
6a274e7629c0d71dcf8cab1e7733687ebfe32e2c53b4ca9fad050b4f1d5471f3
Analyzer Verdict Alert fortinet Malware
GET /fontawesome6/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.skidrowcodex.net/fontawesome6/css/all.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: font/woff2
content-length: 23940
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: max-age=16070400
expires: Thu, 02 Feb 2023 01:34:36 GMT
etag: "62d880f3-5d84"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7625721
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LOkdteIc2xqLRxWVIJohcDxWlB9%2FtRRUOTlMBJ1O5EtaqMb3uD%2FQujEpRNbd1wv6Odv7c7%2FnDWh6Cugsqdfz30rlREaUp1PgqdOqftXtHAVOjQIDP7KH92naEQj3o%2F3aAO2Jor%2BRMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fb1817b506-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 1e3af3f27d3188735c40aea326d4673a
5a2235eacbdb326976542d4f8fa310fc0cb9f945
1313d905671f2ae4b89bbdbc9296b371abc45c93e9c83cd5762bb198cd88b471
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:25 GMT
Etag: "63aff775-118"
Last-Modified: Sun, 01 Jan 2023 07:50:25 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
colognenobilityfrost.com/3d4d1ebf834071da337ca3d4ccf0aef4/invoke.js
200 OK 9.8 kB URL HTTP/1.1 colognenobilityfrost.com/3d4d1ebf834071da337ca3d4ccf0aef4/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Hash 28a7c7d249fcabba2cb810c604b56d39
e548e8f39422e65ea02ce251f6b78314bd0459b7
f060d2747e0b1657e868dbae44521ac0c7c9199963a0c74aa1f520dc4896a314
GET /3d4d1ebf834071da337ca3d4ccf0aef4/invoke.js HTTP/1.1
Host: colognenobilityfrost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 01 Jan 2023 07:50:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b729ad5a8be6e771a890a5681c32e7a0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b8166fe0679d6ccf83bc7f27cb76f6a5
7c76f9e3b7cd828fd0bd9ddb3603e0f1c8fc6f23
d0799689c53c389718f8818863c88447440e69b8837264dbe7a24e62a746e1e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 901dff9661034c26dffae455b5b82552
a53337bc148cc195f270aa52dae1da80545f97ab
3a9ea3ea192bc012e42f35a0720ceed44d2fac65f7ab0d9a3d99ad9ed0eaf5c1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3A9EA3EA192BC012E42F35A0720CEED44D2FAC65F7AB0D9A3D99AD9ED0EAF5C1"
Last-Modified: Sat, 31 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2126
Expires: Sun, 01 Jan 2023 08:25:51 GMT
Date: Sun, 01 Jan 2023 07:50:25 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b8166fe0679d6ccf83bc7f27cb76f6a5
7c76f9e3b7cd828fd0bd9ddb3603e0f1c8fc6f23
d0799689c53c389718f8818863c88447440e69b8837264dbe7a24e62a746e1e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Dec 2022 19:33:54 GMT
expires: Thu, 28 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 303391
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash c64a2cd67114c07cc27e4d696fdc0816
8fbc1189fc3aeea8c7455ac220e53b15fa7aec61
e8d94f9fd85d307b44f056a4a3b2e13fc6f83f8fe70cec60b5ea19a753fd14c4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 01 Jan 2023 07:50:25 GMT
Last-Modified: Sun, 01 Jan 2023 06:13:39 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Y81TejPvRTdQYqp7Msxjv1CrQXkaqiEo-SAUpopjGOVZpCOcToWYSQ==
Age: 5806
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash c64a2cd67114c07cc27e4d696fdc0816
8fbc1189fc3aeea8c7455ac220e53b15fa7aec61
e8d94f9fd85d307b44f056a4a3b2e13fc6f83f8fe70cec60b5ea19a753fd14c4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113218
Date: Sun, 01 Jan 2023 07:50:25 GMT
Etag: "63b03997-1d7"
Expires: Mon, 02 Jan 2023 15:17:23 GMT
Last-Modified: Sat, 31 Dec 2022 13:31:03 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Rd0vMfajjPgROkK99xnELO76T3Zjpsz_WMEtKZ7VaMBUv_57kBKFJQ==
Age: 6380
www.skidrowcodex.net/title.png
200 OK 1.5 kB URL HTTP/2 www.skidrowcodex.net/title.png
IP
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 2f22178748c40becd5add6265c6b412b
ea2adea14520f33a2c20411776fc42c0dc582f6b
f8105f667b1c7a3fffffe8748e2de9f0ba73c4ac02f0ad77747393f52f67dedd
GET /title.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1523
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Thu, 02 Feb 2023 03:09:27 GMT
etag: "62d880f3-5f3"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7620030
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C076OmCUthty7v2JqF7bTWWQ%2BJVTdt4vr7sscxznWGrO%2BcrxP57B8T4inmMC9sV26MMXfIBmeRfeU4DhmfEK1Ol8Rxbc3hiJmGEaAFIdVtibFq2HphzC%2BohiFKepgucHbGSIsktFuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fb9855b506-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Dec 2022 19:34:15 GMT
expires: Thu, 28 Dec 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 303370
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.skidrowcodex.net/epic.png
200 OK 2.5 kB URL HTTP/2 www.skidrowcodex.net/epic.png
IP
File type PNG image data, 32 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 41d9e8bf70768a7ce5e5b0019511052f
434aef8c694a525586358a7d951e8b53215c5e6e
597d9487c5c1c0858a61b5d0c6d10d31ce27d72fcd316cf4634f007acf4a9058
GET /epic.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 2457
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Thu, 02 Feb 2023 03:48:37 GMT
etag: "62d880f3-999"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7617679
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8uptgNA9eZTCwItMwnDoU5wYz8al2l3%2BLy2qJeh2Ug8MVQm93w9MIglY0x%2Fuo7XU%2Fj220RcFVoilYPKVSy5gQ%2F2oiRWMhnMsamvUDuykSC4mB4nqLspjyw6FxaNiO5uflEZQvx3Oxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fb9858b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/metacritic.png
200 OK 3.7 kB URL HTTP/2 www.skidrowcodex.net/metacritic.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ba8da619b67fb56db9f97c7708eb8c57
97b61db1473576f0eb93bd31cbd8f4a2e4dc324b
9bf9e1bbb3fd19526d07bee64270cf06c6f3bb7baeb352561ab54dd1ae5fafd4
GET /metacritic.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 3663
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Thu, 23 Mar 2023 07:26:55 GMT
etag: "62d880f3-e4f"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 3370922
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cNsFrbGyTSOmJkOoWfW9YXmJlpVPZlsjiLNakF0g%2BT6aAW9IHVfF3JIuO1tlSjp4SLzy44ERz8NxiyXXZQg0cqtzQqcqKw4eHGWvu3v673Ed63q%2FyhZxba7ta4w9yTGbSY1FysiD0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fb9859b506-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Dec 2022 19:42:34 GMT
expires: Thu, 28 Dec 2023 19:42:34 GMT
cache-control: public, max-age=31536000
age: 302871
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.skidrowcodex.net/developer.png
200 OK 1.5 kB URL HTTP/2 www.skidrowcodex.net/developer.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash beefb73d3b3d053de6fb9fbd41806e74
6b9537509168f36985b06a1a5832f4c8da4b4678
5630ad4740c9c36b0cec967b432b56de69084b911d5811c41ccc8e42617d11fc
GET /developer.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1481
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Wed, 01 Feb 2023 22:48:29 GMT
etag: "62d880f3-5c9"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7635688
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LTpKScWU1lMCnLu3LXYQsZn9Dryr2LJ7A1JyKBDOOytvlAFcqsoeapKrJCwZqbytfZMoXSGcitRlCxjU7fbw7HRnbzk9%2BtUwVjhg%2Bz4jY9ngLMC0BouGSilKq%2Fl8WPfIEdKW0A4Bpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fba869b506-OSL
X-Firefox-Spdy: h2
www.skidrowcodex.net/genres.png
200 OK 3.2 kB URL HTTP/2 www.skidrowcodex.net/genres.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c2101446a41756d9c136d2378420ef8
fc0d7653ed32c22b96e364880c2f0485a29a8641
1d5275df03745a15ba4b7e5e345ac14a2c090f05ff60af7e789a3426b20c29bf
GET /genres.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 3197
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Thu, 02 Feb 2023 03:09:27 GMT
etag: "62d880f3-c7d"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7620030
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kBa%2Fm125hvHZZlJInFIBXCw7iJdp9L55BcdWFUvxwv%2BVZTrNpt%2B7q1HzZgjHKYT2QrbYyFYQQGw%2FEjFYjgERh1VdU%2BLRwyFf42V7KKbO4RFaMOofN5Pwza023%2FwNLLoKaXR7F29XPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fba867b506-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be89bd1817c53fc0886bbca67f0e5685
8a6ae0bf3ef35aac122702cc039ba362754bc12b
25531809a08809b91176612b29ecaceff9af4ebec0b8b1b60a11135978801b40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25531809A08809B91176612B29ECACEFF9AF4EBEC0B8B1B60A11135978801B40"
Last-Modified: Sat, 31 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17193
Expires: Sun, 01 Jan 2023 12:36:58 GMT
Date: Sun, 01 Jan 2023 07:50:25 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data
Hash 05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Dec 2022 08:12:28 GMT
expires: Fri, 29 Dec 2023 08:12:28 GMT
cache-control: public, max-age=31536000
age: 257877
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.skidrowcodex.net/date.png
200 OK 1.3 kB URL HTTP/2 www.skidrowcodex.net/date.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash caac600dcfcc5c56d74944a20dd0727a
deb8f44e178aa4d3ff2c51c1d6c23d68e66577a7
53a86bf11bd4e065c63ac2e6bba7a8d584873db2fc4a6133a0c984dfb8386a7b
GET /date.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1340
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Mon, 02 Jan 2023 19:07:56 GMT
etag: "62d880f3-53c"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 10240884
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ZAC%2FDiZoTgVh9Nx9fk%2FbwYoEiIK9RubjY0mhypBkFQ42HZExZQ%2BfZE8j1KYNz0ejge0GC9S2H2TCHlkJ82NOW4iL9ceBN%2FZlDexrIte5IpM0JYvQAtYj%2FCfeleiL6c%2BzsXmjBMFCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fbd880b506-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:33:13 GMT
expires: Sat, 30 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 152232
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.skidrowcodex.net/publisher.png
200 OK 1.5 kB URL HTTP/2 www.skidrowcodex.net/publisher.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 44c3fa2085ea4f10f5d5033587f8b9bc
4fe60155858d4d7cfc5af9965d78b4cb2c6edd6b
61ad3e4306816b610d285dbdd52e69c2500f3ddef3579c3afc36877bcd87b122
GET /publisher.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 1532
last-modified: Wed, 20 Jul 2022 22:25:55 GMT
cache-control: public, max-age=16070400
expires: Wed, 01 Feb 2023 22:48:29 GMT
etag: "62d880f3-5fc"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 7635688
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BvdAUBtLrQvBLkarCuHl%2BeDoo9o9aC3VKieydz%2BTLTT0RtrAsQ4qQ1FZqP1LRlPvFu6MkL1id%2Fi1JDh4U%2BMY9PExpLNCU%2Bx6tsetCdcwiXVhyoFN1KmtnF5jZI2yKHZdxAJTzMkCYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fbd87fb506-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Dec 2022 18:52:55 GMT
expires: Tue, 26 Dec 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 478650
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gry-online.pl/galeria/galeria_duze3/1114508828.jpg
200 OK 482 kB URL HTTP/2 www.gry-online.pl/galeria/galeria_duze3/1114508828.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3840x2025, components 3\012- data
Size 482 kB (482164 bytes)
Hash 9195dcffff813369fe1f09eb8692bc6c
ec4c757309645d83536d64a742cbf81d3b6b5c31
7bf70f5f7286fa5d27352c8c93aa600b1b0f24ff0be905ddda31520ac671df67
GET /galeria/galeria_duze3/1114508828.jpg HTTP/1.1
Host: www.gry-online.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/jpeg
content-length: 482164
cache-control: max-age=31536000
last-modified: Wed, 29 Sep 2021 06:51:25 GMT
etag: "b3d9b36bfeb4d71:0"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ys%2BX5zvOjKkxioP7XrAQfoeWJ39lY8e%2FfYTLpwMNJbf%2FLV2m3dhWCBtti9HqjKhJiZzV5Eepp3aPbNHqJa5fM1CBrFph134LURQAxd3fJmpTkC3X8lX3CXKHrNskZsU7zPWO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f98e7fb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Dec 2022 07:01:24 GMT
expires: Wed, 27 Dec 2023 07:01:24 GMT
cache-control: public, max-age=31536000
age: 434941
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash cebdf44040699c9d473abb47fc9d1221
cc54873b9a60667099fa6a38eb199895ad771b95
4f051cf954792b46197c1fc9d3d5c0bf88b89e50e8ef89d0ce3c34a2c5528da4
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.skidrowcodex.net
access-control-allow-credentials: true
set-cookie: uid_id2=c24c2fbf-0307-43d1-a000-e1105b8d044b:1:1; expires=Wed, 29 Dec 2032 07:50:25 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash a7c41b516c13a1afe834d07bfd90caeb
0e5219eac7370f6ae1b14f829fc3e8a17f9af963
6456a1528c283496521c5f87ea90651c8f5a888cad8c1969e948264ddfabbf30
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.skidrowcodex.net
access-control-allow-credentials: true
set-cookie: uid_id2=64bf8861-c2b7-47c2-99d7-f86ab628d73c:1:1; expires=Wed, 29 Dec 2032 07:50:25 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/back-to-top.png
200 OK 2.1 kB URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/img/back-to-top.png
IP
File type PNG image data, 95 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 952aaec234df43d2167f1400f8b3f60a
1015cb7713a407c513eefb339fca2d2670ca67a6
262f611899b5fe03759e7ac14af58f73f26b18c84f215b8e7065005f96b8774e
GET /wp-content/themes/skidrowcodex-main/img/back-to-top.png HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/png
content-length: 2092
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
cache-control: public, max-age=16070400
expires: Thu, 26 Jan 2023 15:34:51 GMT
etag: "62d880ff-82c"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 8180114
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BArd3SjvKHMe5C3%2BF3pMiFhRA71FUJZHvS1xdLP9JYbpH8nz6pJyI5r6FHKrhJQF7M1MnzlcYU2h4fw9fH4hKDjgUkGag1%2Bwxrb5GPx9168T32qYhGelw5LjPPD%2Fo%2BBG%2FwNfd3pskA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fc58c2b506-OSL
X-Firefox-Spdy: h2
www.gry-online.pl/galeria/galeria_duze3/517196093.jpg
200 OK 1.4 MB URL HTTP/2 www.gry-online.pl/galeria/galeria_duze3/517196093.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3840x2160, components 3\012- data
Size 1.4 MB (1368190 bytes)
Hash 3699dc7e8883bf0570e3bd5ba0d29666
7ec1fe30225b2259a7f46cfba997a838ba7e28e8
188ba34a0ecf9dc3be2499ccbc7b42ba8d155dd580e26727721f5aecf58d60ad
GET /galeria/galeria_duze3/517196093.jpg HTTP/1.1
Host: www.gry-online.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/jpeg
content-length: 1368190
cache-control: max-age=31536000
last-modified: Wed, 01 Sep 2021 08:22:39 GMT
etag: "4a9a3b87a9fd71:0"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iWmrtx9xFJlBc%2FKi3vwCBsZEuNOouzofumxFKQohNJBcEuqan2QhN8aEHKUZscKqhZGA1ZyYjUMIOLQTiV59d9AJ3NpIq4pjptO9d%2BiQ%2FTcR7mQm8htd%2FO6j9PK97HvDTQnd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f98e80b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash 9bc45db29b2ff68665448efc34f3fd2b
ac83fc4cb22f348b571f1df1512ae210e2c535dc
8fcd45daec8b506622b34f883aeab6493e4caf33c2784a7db6634fd85a320ca3
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.skidrowcodex.net
access-control-allow-credentials: true
set-cookie: uid_id2=f84e3ad7-8948-428f-9697-3e4744aa6d62:1:1; expires=Wed, 29 Dec 2032 07:50:25 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b8166fe0679d6ccf83bc7f27cb76f6a5
7c76f9e3b7cd828fd0bd9ddb3603e0f1c8fc6f23
d0799689c53c389718f8818863c88447440e69b8837264dbe7a24e62a746e1e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/21149d65/www-player.css
200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/21149d65/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 12c224a05a50ec216eb026a7ddd40dfa
5e7c6908c414efae1db8803dc3e0e768f4583b67
e9a2f274c08edbcc81e33d35dc28013c9c17672b6af0249b3dd3d21048963777
GET /s/player/21149d65/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Gv1jHiaHafY?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49901
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 05:20:56 GMT
expires: Sun, 31 Dec 2023 05:20:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Dec 2022 01:17:46 GMT
content-type: text/css
age: 95370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gry-online.pl/galeria/galeria_duze3/1114494250.jpg
200 OK 879 kB URL HTTP/2 www.gry-online.pl/galeria/galeria_duze3/1114494250.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3840x2160, components 3\012- data
Size 879 kB (878743 bytes)
Hash f8e67759a51f7b30fa8ff381c6fc09bb
d09f984205cd5ed4e1c7d217af677465a3ff5ef6
2c6e6d94c2639f45bf2e206180a0ffd773d25c3a0841dd4473b945e8b162d754
GET /galeria/galeria_duze3/1114494250.jpg HTTP/1.1
Host: www.gry-online.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: image/jpeg
content-length: 878743
cache-control: max-age=31536000
last-modified: Wed, 29 Sep 2021 06:51:10 GMT
etag: "3d2af63feb4d71:0"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Byt88lWjKkyWZwXIfK755GNj700NsZMTqLQUrQM37eMDZxYVnJitq7ZG09GbXZyQbQtdqC6HScht%2BpPnpF9RsWKBK9%2BRZ1leVmqyc4CYowAiqRgthr3GssUqulRnJie5j2y1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fa3eedb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dbfef74ce76b23c224b757987732f8dc
4002319b0161d6ea3849c784ace79f577db288b2
406af203f4e69f59113802dc7ec297934b1e87c7101c5c5e3ee686c71d19b1b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/21149d65/www-embed-player.vflset/www-embed-player.js
200 OK 109 kB URL HTTP/2 www.youtube.com/s/player/21149d65/www-embed-player.vflset/www-embed-player.js
IP
File type ASCII text, with very long lines (679)
Size 109 kB (108885 bytes)
Hash 0da8a5c26ed7f1950b66ffa81f8fa668
d4896fb11f0ce78404095d3a677cc980e4e59dfa
3d5ab6b0abba38b41d1a4e81439e4aec48301e6b49a0d676cbcd9286be01fa1f
GET /s/player/21149d65/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Gv1jHiaHafY?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 108885
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 01 Jan 2023 02:15:40 GMT
expires: Mon, 01 Jan 2024 02:15:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Dec 2022 01:17:46 GMT
content-type: text/javascript
age: 20086
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/21149d65/fetch-polyfill.vflset/fetch-polyfill.js
200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/21149d65/fetch-polyfill.vflset/fetch-polyfill.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/21149d65/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Gv1jHiaHafY?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 07:16:45 GMT
expires: Sun, 31 Dec 2023 07:16:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Dec 2022 01:17:46 GMT
content-type: text/javascript
age: 88421
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imperturbablesum.com/pixel/purst?dl=0&th=0&sc=0&rs=2430&rd=2430&fd=1060&bv=22.10.v.9&tmpl=70
200 OK 0 B URL HTTP/1.1 imperturbablesum.com/pixel/purst?dl=0&th=0&sc=0&rs=2430&rd=2430&fd=1060&bv=22.10.v.9&tmpl=70
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=2430&rd=2430&fd=1060&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: imperturbablesum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 01 Jan 2023 07:50:26 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 0d9e1ebd34a2dcecea2874cb47a0c6cf
e8a26fd6d84ba88f849110e6f5694b8a6b491859
aeb747126e85c1a661accbca84ed997059068c541022a4b1819f571440c38bbf
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "AEB747126E85C1A661ACCBCA84ED997059068C541022A4B1819F571440C38BBF"
Last-Modified: Sat, 31 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21469
Expires: Sun, 01 Jan 2023 13:48:15 GMT
Date: Sun, 01 Jan 2023 07:50:26 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6401f6081c50472b629a3ef06342e70a
dd56746940805ac48b7882a64d045cf0f0bbe5ca
8d61c46827e79d2d6fa29cb39a1493fe80335b54dd4488d3e445bd680fd00232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D61C46827E79D2D6FA29CB39A1493FE80335B54DD4488D3E445BD680FD00232"
Last-Modified: Sat, 31 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11705
Expires: Sun, 01 Jan 2023 11:05:31 GMT
Date: Sun, 01 Jan 2023 07:50:26 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9d3e63fdd4c1a91cac1ea77a283abb83
7671deabc623576b38d9f8bf44c4e944433ad44a
8f55e2574e40f6c832cd8a7ab33f64677641567a467ec467384926b8234ca229
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0a31efc3b6c6aefb8a263a103da6a755
fa82a0344a62721657f6ae2ad8a572ce5aeaa462
e9de5e33c9237585b9ca1de7fffcf025c0bba57a0dec177c9460b43b72ff055d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 01 Jan 2023 07:36:04 GMT
expires: Sun, 01 Jan 2023 07:51:04 GMT
cache-control: public, max-age=900
age: 862
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 01 Jan 2023 07:50:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb835e9c2a23998863a011231181123d
1e92bdf5b2e18081e85aaec2b3d2bdd339c39afc
807ca99270a97e4581bcbda7edd945beb016822f4f98c13f049446fbed71d350
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "807CA99270A97E4581BCBDA7EDD945BEB016822F4F98C13F049446FBED71D350"
Last-Modified: Sat, 31 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8590
Expires: Sun, 01 Jan 2023 10:13:36 GMT
Date: Sun, 01 Jan 2023 07:50:26 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9d3e63fdd4c1a91cac1ea77a283abb83
7671deabc623576b38d9f8bf44c4e944433ad44a
8f55e2574e40f6c832cd8a7ab33f64677641567a467ec467384926b8234ca229
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0a31efc3b6c6aefb8a263a103da6a755
fa82a0344a62721657f6ae2ad8a572ce5aeaa462
e9de5e33c9237585b9ca1de7fffcf025c0bba57a0dec177c9460b43b72ff055d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 01 Jan 2023 07:50:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bd00d9416fbf60c9a39c50871e5d0a73
3eb10a727ae5aa651ba8db0ac061e963b1171a83
cd6a2c859412feaf04ddd180c49e174d9505c21d10a9124f3154c43561cdd27c
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 01 Jan 2023 07:50:26 GMT
server: ESF
cache-control: private
content-length: 31016
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e8326de7cdbef497ef24a5fc88d2cc22
4fa91e91effcae3dc71545222ab483f65f5402ff
d4cf5c4c5b2adb5bbbd7e4cb620b2e39d0257b798f12823c10d8bebfb1f1cd45
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 23:32:51 GMT
expires: Sun, 31 Dec 2023 23:32:51 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 29855
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
volcanoimplement.com/watch.317516628038.js?key=3d4d1ebf834071da337ca3d4ccf0aef4&kw=%5B%22far%22%2C%22cry%22%2C%226%22%2C%22ultimate%22%2C%22edition%22%2C%22v1%22%2C%225%22%2C%220%22%2C%22repack-decepticon%22%2C%22-%22%2C%22skidrow%22%2C%22codex%22%5D&refer=https%3A%2F%2Fwww.skidrowcodex.net%2Ffar-cry-6-ultimate-edition-v1-5-0-repack-decepticon%2F&tz=0&dev=e&res=12.1055&uuid=f84e3ad7-8948-428f-9697-3e4744aa6d62%3A1%3A1
307 Temporary Redirect 0 B URL HTTP/1.1 volcanoimplement.com/watch.317516628038.js?key=3d4d1ebf834071da337ca3d4ccf0aef4&kw=%5B%22far%22%2C%22cry%22%2C%226%22%2C%22ultimate%22%2C%22edition%22%2C%22v1%22%2C%225%22%2C%220%22%2C%22repack-decepticon%22%2C%22-%22%2C%22skidrow%22%2C%22codex%22%5D&refer=https%3A%2F%2Fwww.skidrowcodex.net%2Ffar-cry-6-ultimate-edition-v1-5-0-repack-decepticon%2F&tz=0&dev=e&res=12.1055&uuid=f84e3ad7-8948-428f-9697-3e4744aa6d62%3A1%3A1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.317516628038.js?key=3d4d1ebf834071da337ca3d4ccf0aef4&kw=%5B%22far%22%2C%22cry%22%2C%226%22%2C%22ultimate%22%2C%22edition%22%2C%22v1%22%2C%225%22%2C%220%22%2C%22repack-decepticon%22%2C%22-%22%2C%22skidrow%22%2C%22codex%22%5D&refer=https%3A%2F%2Fwww.skidrowcodex.net%2Ffar-cry-6-ultimate-edition-v1-5-0-repack-decepticon%2F&tz=0&dev=e&res=12.1055&uuid=f84e3ad7-8948-428f-9697-3e4744aa6d62%3A1%3A1 HTTP/1.1
Host: volcanoimplement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 01 Jan 2023 07:50:26 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.skidrowcodex.net
Access-Control-Allow-Origin: https://www.skidrowcodex.net
Access-Control-Allow-Credentials: true
Location: https://volcanoimplement.com/watch.317516628038.js?key=3d4d1ebf834071da337ca3d4ccf0aef4&kw=%5B%22far%22%2C%22cry%22%2C%226%22%2C%22ultimate%22%2C%22edition%22%2C%22v1%22%2C%225%22%2C%220%22%2C%22repack-decepticon%22%2C%22-%22%2C%22skidrow%22%2C%22codex%22%5D&refer=https%3A%2F%2Fwww.skidrowcodex.net%2Ffar-cry-6-ultimate-edition-v1-5-0-repack-decepticon%2F&tz=0&dev=e&res=12.1055&uuid=f84e3ad7-8948-428f-9697-3e4744aa6d62%3A1%3A1&shu=d10acc4641b3c1288b464b343eacdb296b11ebf23f4c580949930c10283141cbd089e4d60025d82161e51c11c529c6f2b389b0b28462d088c442d3923d75bcacfa13b1b7d576001bd782762a5377744c7feed6e9afd2cc7d9acf69fc0685f530b337&pst=1672559486&rmtc=t
Set-Cookie: u_pl=16850525; expires=Mon, 02 Jan 2023 07:50:26 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.f9nvucuwbRcnNuTSakzQT8dU6QtwMJVpNvvALU98VMg; expires=Sun, 01 Jan 2023 07:51:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ccb90660c3fdf799e371290a281d540a
Strict-Transport-Security: max-age=0; includeSubdomains
rosyruffian.com/sbar.json?key=9e55c24c07205b6a363c94f4ff46ad27
200 OK 9.4 kB URL HTTP/1.1 rosyruffian.com/sbar.json?key=9e55c24c07205b6a363c94f4ff46ad27
IP
File type JSON data\012- , ASCII text, with very long lines (16371), with no line terminators
Hash 118e9be37af8a2b0191779fac098f426
8237a2648b222aff4c2f1657369ed482c7e1c358
50f028a1229bf1dc560ca75aa75624fbd3b85d111c73247f43b70db8363fb311
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=9e55c24c07205b6a363c94f4ff46ad27 HTTP/1.1
Host: rosyruffian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.skidrowcodex.net
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 01 Jan 2023 07:50:26 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.skidrowcodex.net
Access-Control-Allow-Origin: https://www.skidrowcodex.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16905685; expires=Mon, 02 Jan 2023 07:50:26 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 02 Jan 2023 07:50:26 GMT; secure; SameSite=None
uncs=1; expires=Mon, 02 Jan 2023 07:50:26 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 02 Jan 2023 07:50:26 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 02 Jan 2023 07:50:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 86732b4bc4b80f8dcefec6f34171b471
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
volcanoimplement.com/watch.317516628038.js?key=3d4d1ebf834071da337ca3d4ccf0aef4&kw=%5B%22far%22%2C%22cry%22%2C%226%22%2C%22ultimate%22%2C%22edition%22%2C%22v1%22%2C%225%22%2C%220%22%2C%22repack-decepticon%22%2C%22-%22%2C%22skidrow%22%2C%22codex%22%5D&refer=https%3A%2F%2Fwww.skidrowcodex.net%2Ffar-cry-6-ultimate-edition-v1-5-0-repack-decepticon%2F&tz=0&dev=e&res=12.1055&uuid=f84e3ad7-8948-428f-9697-3e4744aa6d62%3A1%3A1&shu=d10acc4641b3c1288b464b343eacdb296b11ebf23f4c580949930c10283141cbd089e4d60025d82161e51c11c529c6f2b389b0b28462d088c442d3923d75bcacfa13b1b7d576001bd782762a5377744c7feed6e9afd2cc7d9acf69fc0685f530b337&pst=1672559486&rmtc=t
200 OK 641 B URL HTTP/1.1 volcanoimplement.com/watch.317516628038.js?key=3d4d1ebf834071da337ca3d4ccf0aef4&kw=%5B%22far%22%2C%22cry%22%2C%226%22%2C%22ultimate%22%2C%22edition%22%2C%22v1%22%2C%225%22%2C%220%22%2C%22repack-decepticon%22%2C%22-%22%2C%22skidrow%22%2C%22codex%22%5D&refer=https%3A%2F%2Fwww.skidrowcodex.net%2Ffar-cry-6-ultimate-edition-v1-5-0-repack-decepticon%2F&tz=0&dev=e&res=12.1055&uuid=f84e3ad7-8948-428f-9697-3e4744aa6d62%3A1%3A1&shu=d10acc4641b3c1288b464b343eacdb296b11ebf23f4c580949930c10283141cbd089e4d60025d82161e51c11c529c6f2b389b0b28462d088c442d3923d75bcacfa13b1b7d576001bd782762a5377744c7feed6e9afd2cc7d9acf69fc0685f530b337&pst=1672559486&rmtc=t
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (601)
Hash 9740275a18a7bcb674e601401c65188c
a6b7b430e49a3e31c8b5524e5b5c17be44043b11
589a7b01c8002df7aca375d5ead3e248b205ef3825b974c5fcd6e34ff90e03ab
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.317516628038.js?key=3d4d1ebf834071da337ca3d4ccf0aef4&kw=%5B%22far%22%2C%22cry%22%2C%226%22%2C%22ultimate%22%2C%22edition%22%2C%22v1%22%2C%225%22%2C%220%22%2C%22repack-decepticon%22%2C%22-%22%2C%22skidrow%22%2C%22codex%22%5D&refer=https%3A%2F%2Fwww.skidrowcodex.net%2Ffar-cry-6-ultimate-edition-v1-5-0-repack-decepticon%2F&tz=0&dev=e&res=12.1055&uuid=f84e3ad7-8948-428f-9697-3e4744aa6d62%3A1%3A1&shu=d10acc4641b3c1288b464b343eacdb296b11ebf23f4c580949930c10283141cbd089e4d60025d82161e51c11c529c6f2b389b0b28462d088c442d3923d75bcacfa13b1b7d576001bd782762a5377744c7feed6e9afd2cc7d9acf69fc0685f530b337&pst=1672559486&rmtc=t HTTP/1.1
Host: volcanoimplement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.skidrowcodex.net
Referer: https://www.skidrowcodex.net/
Connection: keep-alive
Cookie: u_pl=16850525; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjg1MDUyNSwiayI6IjNkNGQxZWJmODM0MDcxZGEzMzdjYTNkNGNjZjBhZWY0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNDAzNzQxLCJwaWQiOjI0Mzk3NywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjoyMywicHQiOjQsInBrIjoiZnJzcHNkYWEiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly93d3cuc2tpZHJvd2NvZGV4Lm5ldC9mYXItY3J5LTYtdWx0aW1hdGUtZWRpdGlvbi12MS01LTAtcmVwYWNrLWRlY2VwdGljb24vIn19.f9nvucuwbRcnNuTSakzQT8dU6QtwMJVpNvvALU98VMg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 01 Jan 2023 07:50:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.skidrowcodex.net
Access-Control-Allow-Origin: https://www.skidrowcodex.net
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=f84e3ad7-8948-428f-9697-3e4744aa6d62:1:1; expires=Sun, 08 Jan 2023 07:50:27 GMT; secure; SameSite=None
iprc603d684f49e049d270ee635a7b3ad73d=2717343; expires=Mon, 02 Jan 2023 09:50:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 02 Jan 2023 07:50:27 GMT; secure; SameSite=None
uncs=1; expires=Mon, 02 Jan 2023 07:50:27 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 02 Jan 2023 07:50:27 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 02 Jan 2023 07:50:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6366d57a4bb46aef3c065005660b249a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 01 Jan 2023 07:50:27 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 5a9940c16905198556cfeb52ee8b12e3
3fda2e7ece2a26604bc5c703083a01731cdcc1a2
fb1b77f23b1a8211e5ce03a3ad18473684b7577efe2051ce59dd70b79ba4f1e3
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1066
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 01 Jan 2023 07:50:27 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rosyruffian.com/pixel/sbe?t=2&error=timeout
200 OK 0 B URL HTTP/1.1 rosyruffian.com/pixel/sbe?t=2&error=timeout
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbe?t=2&error=timeout HTTP/1.1
Host: rosyruffian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Cookie: u_pl=16905685; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 01 Jan 2023 07:50:27 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9ea7db546644ed13bd9c26e336a5b104
6efd7672a56c58b77d1223d11f392efadf15e859
f981dfefffae93b361d8c6d1452a2eaa14f363ccf48075e53fd733c0d2f3b9bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F981DFEFFFAE93B361D8C6D1452A2EAA14F363CCF48075E53FD733C0D2F3B9BB"
Last-Modified: Fri, 30 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13769
Expires: Sun, 01 Jan 2023 11:39:56 GMT
Date: Sun, 01 Jan 2023 07:50:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c6f0a2c3d04259452cd4333083e749c3
f8712552e6b49094e5353c59d13672450b443c62
f2297b2157c5571805714c2202fdd52b4148d8bc4c2bd3f87264ba6c856b833a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F2297B2157C5571805714C2202FDD52B4148D8BC4C2BD3F87264BA6C856B833A"
Last-Modified: Fri, 30 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13448
Expires: Sun, 01 Jan 2023 11:34:35 GMT
Date: Sun, 01 Jan 2023 07:50:27 GMT
Connection: keep-alive
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 01 Jan 2023 07:50:27 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 215a34d32aa33b643a7602b724ee30b5
Strict-Transport-Security: max-age=0; includeSubdomains
www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=16850525
200 OK 1.3 kB URL HTTP/1.1 www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=16850525
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fa30c589afc1c7816beac6f4bca370be
a7366f64be8547ed0d56b7397dcd072856b6708c
919b28970868d3a2a5875bc7dc9e58932a74ba291f632672d1e44dafc5e63f67
Analyzer Verdict Alert quad9 Sinkholed
GET /dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=16850525 HTTP/1.1
Host: www.spikereekvelocity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 01 Jan 2023 07:50:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=16122660; expires=Mon, 02 Jan 2023 07:50:28 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.t5pFp7qIevwtGYw0GdHbsqRWc0WPsw7WI58UBYiuoVg; expires=Sun, 01 Jan 2023 07:51:28 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f53293bb37979b530e61b160d12e8374
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.spikereekvelocity.com/dyfc1k09?shu=db28d5b6dd5a0ddc35afc7dbc3ff79fbff665b43c94377b6a81850ff18d3275b1e15d592c466a2d85c54f436f773af540c9e1d367b9ef3f2a44be25aaf2f0db72b9e8c77a299fa1c6aec806f17a665f7abf9185aabf2ff873483a90a95c6&pst=1672559488&rmtc=t&uuid=&pii=&in=false&key=863705bcbb4b6a554ddb359665395a6f&refer=https%3A%2F%2Fwww.skidrowcodex.net%2F&psid=16850525
302 Found 0 B URL HTTP/1.1 www.spikereekvelocity.com/dyfc1k09?shu=db28d5b6dd5a0ddc35afc7dbc3ff79fbff665b43c94377b6a81850ff18d3275b1e15d592c466a2d85c54f436f773af540c9e1d367b9ef3f2a44be25aaf2f0db72b9e8c77a299fa1c6aec806f17a665f7abf9185aabf2ff873483a90a95c6&pst=1672559488&rmtc=t&uuid=&pii=&in=false&key=863705bcbb4b6a554ddb359665395a6f&refer=https%3A%2F%2Fwww.skidrowcodex.net%2F&psid=16850525
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /dyfc1k09?shu=db28d5b6dd5a0ddc35afc7dbc3ff79fbff665b43c94377b6a81850ff18d3275b1e15d592c466a2d85c54f436f773af540c9e1d367b9ef3f2a44be25aaf2f0db72b9e8c77a299fa1c6aec806f17a665f7abf9185aabf2ff873483a90a95c6&pst=1672559488&rmtc=t&uuid=&pii=&in=false&key=863705bcbb4b6a554ddb359665395a6f&refer=https%3A%2F%2Fwww.skidrowcodex.net%2F&psid=16850525 HTTP/1.1
Host: www.spikereekvelocity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spikereekvelocity.com/dyfc1k09?key=0f22c1fd609f13cb7947c8cabfe1a90d&submetric=16122660
Cookie: u_pl=16122660; ain=eyJhbGciOiJIUzI1NiJ9.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.t5pFp7qIevwtGYw0GdHbsqRWc0WPsw7WI58UBYiuoVg; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx/1.19.5
Date: Sun, 01 Jan 2023 07:50:28 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://us.slowww.xyz/postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7
Set-Cookie: pdhtkv=true; expires=Mon, 02 Jan 2023 07:50:28 GMT
uncs=1; expires=Mon, 02 Jan 2023 07:50:28 GMT
pdhtkv28=true; expires=Mon, 02 Jan 2023 07:50:28 GMT
uncs28=1; expires=Mon, 02 Jan 2023 07:50:28 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 36feab38db40a559d50a21db5aeb335d
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 983e87a7279c8eef1073f702f2f174c8
ef48e080287f676170fa227e590d7fb7ec5719b0
adfedec0d72fed954ee1b10666d51ebc6e71cbe83fa8461203ae36767e6e5b6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ADFEDEC0D72FED954EE1B10666D51EBC6E71CBE83FA8461203AE36767E6E5B6F"
Last-Modified: Fri, 30 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19710
Expires: Sun, 01 Jan 2023 13:18:58 GMT
Date: Sun, 01 Jan 2023 07:50:28 GMT
Connection: keep-alive
us.slowww.xyz/postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7
200 OK 2.1 kB URL HTTP/2 us.slowww.xyz/postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6b16e7d98a6e5a23beaebcd03e754161
22b0a1d3fa41e2e4a6da6377e33bd9be94fd02e2
5e611296bce19741392d9912f61a76cbd90eb6a19bff968cd2a78b5cde3ca40f
GET /postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7 HTTP/1.1
Host: us.slowww.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.spikereekvelocity.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.15.8.3
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/html;charset=UTF-8
content-length: 2086
X-Firefox-Spdy: h2
us.slowww.xyz/postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7&token=4fb87ff5f2a25fe1440d35a914e2ce39&timezone=0&iframe_test=false&webdriver_test=false
302 Found 0 B URL HTTP/2 us.slowww.xyz/postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7&token=4fb87ff5f2a25fe1440d35a914e2ce39&timezone=0&iframe_test=false&webdriver_test=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7&token=4fb87ff5f2a25fe1440d35a914e2ce39&timezone=0&iframe_test=false&webdriver_test=false HTTP/1.1
Host: us.slowww.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us.slowww.xyz/postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: openresty/1.15.8.3
date: Sun, 01 Jan 2023 07:50:29 GMT
content-length: 0
set-cookie: platform_user_id=desktop:b9ce734ea0955fdbdaef46d4d37c6039
platform_user_id_3rd_party=desktop:b9ce734ea0955fdbdaef46d4d37c6039; SameSite=None; Secure; Max-Age=31556952
location: https://www.pricecomparedeals.com/no-no
X-Firefox-Spdy: h2
us.slowww.xyz/favicon.ico
200 OK 0 B URL HTTP/2 us.slowww.xyz/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: us.slowww.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us.slowww.xyz/postback/click?key=v2-1672559428301-4-9875-999800-3126eb63-d8fa-ccac-2071-ae21333983d7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.15.8.3
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/html;charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/14ieJpYqprs
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/14ieJpYqprs
IP
Hash 870496993d6899818124b30ab0abd9e7
b8d606515905317d6992de068577ae4d67f4a41c
e0187ab6ca39972fece57435b0bc9c3e4ca965d5354e047929134d0010f68724
POST /s/gts1p5/14ieJpYqprs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pricecomparedeals.com/assets/www/controls/e24/image/logo.png?v=3
200 OK 11 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/controls/e24/image/logo.png?v=3
IP
File type PNG image data, 248 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 42465aba800caa60c6e27a64a1450f03
fa0aa3a1539ddfe2b6a04f067f269a7a26ad4b6d
51ac5a9904630c96ee0201265a3f3f982283d570716b138e34393956b69f6d6e
GET /assets/www/controls/e24/image/logo.png?v=3 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/png;charset=UTF-8
content-length: 10612
etag: W/"10612-1664276206000"
last-modified: Tue, 27 Sep 2022 10:56:46 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TWY7k4SF6Il5UHuq3nBl%2FY9lYhqoQ%2BNo9ZqktaptfJpTmPVuVWLwO9dL9jW1SSf%2Bq9TsbP2MlBFFS9UQXjvlwDvA33818O8I0bzetfs5dasOu7TLAz2Y6hd7FaBTLlKmVdxmwQjwNVxINE0i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1299d80b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/controls/e24/image/favicon.png?v=4
200 OK 25 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/controls/e24/image/favicon.png?v=4
IP
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 27ff159ffd4483c7cdfddeccc2c2cb26
f104108cd490ffb457f444b62e8c0ab0abb160ea
c5fab08bc22b3810427d134306aef4b91c2cfd69b618c2a305595b44aa1aa85c
GET /assets/www/controls/e24/image/favicon.png?v=4 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/png;charset=UTF-8
content-length: 24724
etag: W/"24724-1664276302000"
last-modified: Tue, 27 Sep 2022 10:58:22 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sw4wcHpUW%2BP2XDpVGMOCFwNtqy5NjHNZCiZPvq4EjE4AqIHyb%2F9%2BmeeoQdp36KbwQqtdDSZnbZVNEPkdWGZtCZJWSGeys6QCLxq1MlV33AfOYLftLUmopLD78eqlDq9Fld5lsjpGgJctALPU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1299d70b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/controls/e24/image/seguranca.png
200 OK 6.0 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/controls/e24/image/seguranca.png
IP
File type PNG image data, 87 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b70b2d9753e6b35bb5e6de3a40d32cd
41c2319ce5e8a4e3ae3079b43446b17e7da7df5d
4dcad69f87e5383a6249f7068fc77dc00fddea5b67da64cb5fc0f8560a4366fb
GET /assets/www/controls/e24/image/seguranca.png HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/png;charset=UTF-8
content-length: 6014
etag: W/"6014-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ztyiRq4KLJPQlAfil9FNxZxfZi2UkP6w0DDw6lQfDRmaQlpLzJFixSRiVQeu3a7JTj%2BAAPsd2BnF7po%2Byzs9Izdrwxi8pli4Ms%2B2WnGVs%2FKPZC4R5zWr45jJEvSgjykMjfzRSzqoQwSxlHLn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba1a0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/controls/e24/image/precos.png
200 OK 4.5 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/controls/e24/image/precos.png
IP
File type PNG image data, 78 x 79, 8-bit/color RGBA, non-interlaced\012- data
Hash a9f1188ffb3a18bc882f827ccd63568c
acfe32590cd5baa6d8da8f39031bc50f10d3de5a
4fad69c5b20636e19b5b5249afc5e767852909bc55e2a19a12f1a962e07624f1
GET /assets/www/controls/e24/image/precos.png HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/png;charset=UTF-8
content-length: 4525
etag: W/"4525-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yj3BKIvGnJfS%2FzL0iq4ZnVi1s%2FTMLBGg6UqDtWUN0kDCs%2FrDmIZuBuAnkHVfW6v%2BGkGCf5swxgXiyYv8ht597ysPFHiHShSovZ7a%2FiT3PpyiWjUQ5vPc25DakLy6Bb0kdlNSGC4B%2FvNl%2Fex%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba130b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/controls/e24/image/confianca.png
200 OK 6.0 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/controls/e24/image/confianca.png
IP
File type PNG image data, 66 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 66be490550c3bdbd06be9311bd58efbd
7d7987609ba94929831c47da0227d7a8ca488ed2
576b16f9dc9536d5e44fd2422f242ae0b2148f123bb1f3783b78a5614ec1a67a
GET /assets/www/controls/e24/image/confianca.png HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/png;charset=UTF-8
content-length: 5998
etag: W/"5998-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fKh5DhOE%2BfFrQsAEExG15qt5ZjjVuFP4bJp%2BaMVrPjr8lUaEMyiAC0zbwvi7xpJAq%2FHdMh%2FuAncWvCfVZ8j%2BD8TDZo3bTUoAubBBxzoiI7LDEcxWI0KDHYHoyL4Xz1fnFHsyXIIHcQQ93Gsl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba220b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/no-no
200 OK 31 kB URL HTTP/2 www.pricecomparedeals.com/no-no
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1238), with CRLF, LF line terminators
Hash 0b57112d27ff50a176a273b520c01e3c
2670f167d4d87571b99d61bcace4c373db286e77
97295cde235bb6ec7b4b20588ac77599a277fcc7673d1f79b273e9b62f13f84d
GET /no-no HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://us.slowww.xyz/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/html;charset=UTF-8
cache-control: max-age=1800
cf-cache-status: HIT
age: 6090
last-modified: Sun, 01 Jan 2023 06:08:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aCQHGV6jVrSwCPxGp%2B4M%2BPbS%2Fhq2x7HSGaZq7Ar0d%2FwUuj6FAju6ie15daw6vnuUw71X0dp0zJaatBNwTiOEZDLysuhY4NUaM1c9O60EnSfFGNICkJRJXcgE1xfP0usLK5w0MSUXgXZCVFd%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1219780b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.dealsfor.life/23x9/GG201910181329540253000000000000_bandeira_noruega.jpg
200 OK 389 B URL HTTP/2 cdn.dealsfor.life/23x9/GG201910181329540253000000000000_bandeira_noruega.jpg
IP
File type PNG image data, 23 x 9, 8-bit/color RGB, non-interlaced\012- data
Hash 3985c40fe38e6b8cb2b7de1b2987cffe
7c0328120073e47ffe990c218a3318c8edd675c5
c82d89e379fa3c6a82fcf1b943144c7f61f007828904ff2beccfe127396e9369
GET /23x9/GG201910181329540253000000000000_bandeira_noruega.jpg HTTP/1.1
Host: cdn.dealsfor.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/png
content-length: 389
x-amz-id-2: IiusZnti6Fc7BErGOmKVn5uyZZ1stcsC2EzgNj+4XO4RSAaDs23tubfUnp2QwmDDN7MmZncjAhM=
x-amz-request-id: 5V2P1FFTF27KNSDX
last-modified: Thu, 28 Nov 2019 03:36:17 GMT
etag: "3985c40fe38e6b8cb2b7de1b2987cffe"
cache-control: max-age=86400
cf-cache-status: HIT
age: 918
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L1soVEyYMdBk777VDdqfQVqgaLFVK3FPesU7xPnVX1gb3BKDIg8wLe1qDv7GD00lHoiqngFX4yczgT80RUejYK7jjLoEE6Y%2F9Wlyig1%2B0hb8AYLu93fKns5Tmw0CH4lFg%2FP0rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa136c70b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.dealsfor.life/630x525/GG202006090803570037000000000000_elektronics-v1.jpg
200 OK 37 kB URL HTTP/2 cdn.dealsfor.life/630x525/GG202006090803570037000000000000_elektronics-v1.jpg
IP
File type JPEG image data, baseline, precision 8, 630x525, components 3\012- data
Hash 7f936cedd7e479eb865f1bfe1c63e945
4088966128f5171f9750dfd5f83ed2f8c517090e
cf3f17e5d372b10391a1ec46de26be3e83ca3c37f22d6103aee48e6d210d906a
GET /630x525/GG202006090803570037000000000000_elektronics-v1.jpg HTTP/1.1
Host: cdn.dealsfor.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/jpeg
content-length: 36766
x-amz-id-2: IMq+Sz4LUZ8TzgKFeRC0y762GUTn0rNSWCEjpr4iZLOb0//ZFbRumy9jOX7Bs0XWmwExjRcUDY8=
x-amz-request-id: G0SNKTHS1EEHKAYY
last-modified: Tue, 09 Jun 2020 08:22:04 GMT
etag: "7f936cedd7e479eb865f1bfe1c63e945"
cache-control: max-age=86400
cf-cache-status: HIT
age: 4838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dn6sTY6ex8nbYo2hMS8CWR1%2BbjI8veq8rDD8FhgjJwPsGgGCtKnHwi%2BJy%2FVprcv%2FndT8iwFraAG%2F9dyhb7Yp9eKct7hYXKJP9raiMie8ZlnMo0NMowJwAzJHBNOHJFxI65tLKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa136c6fb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.dealsfor.life/630x315/GG202006050817010094000000000000_fashion.jpg
200 OK 25 kB URL HTTP/2 cdn.dealsfor.life/630x315/GG202006050817010094000000000000_fashion.jpg
IP
File type JPEG image data, baseline, precision 8, 630x315, components 3\012- data
Hash e4f10f00dbdfc76dac0b06e12e76dd81
4b016a4493756924b8fb40a9f1391d1378c07cf3
a8bef644a63472bb106be50ae79c3eaf5e10d49f1f8c207564036e07b01781d9
GET /630x315/GG202006050817010094000000000000_fashion.jpg HTTP/1.1
Host: cdn.dealsfor.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/jpeg
content-length: 25059
x-amz-id-2: SFrxRe2sKqmtTHg2kUJx1wbyxEhgFybnCJYi5BNqrVrAbwkmvZEFyZiJuduYcLWF5JD3QgkVXHc=
x-amz-request-id: G0SVY3EKCWSRK22K
last-modified: Fri, 05 Jun 2020 08:42:55 GMT
etag: "e4f10f00dbdfc76dac0b06e12e76dd81"
cache-control: max-age=86400
cf-cache-status: HIT
age: 4839
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bo9cBzJZP8pNWSOex2FCtSqH2gLa7W8Yv%2BQoRCz%2F3bbXDjTrxfS0wfrdN6XHc2G5i%2BQmr5Xr2Gkn%2Bb%2FrGKX%2B8jIOwPIHRe1x5qYjoiwIC2zYm023hGWnNKbiCBNVqnmKzQixQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa136c71b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.dealsfor.life/420x210/GG202006050826060263000000000000_travel.jpg
200 OK 18 kB URL HTTP/2 cdn.dealsfor.life/420x210/GG202006050826060263000000000000_travel.jpg
IP
File type JPEG image data, baseline, precision 8, 420x210, components 3\012- data
Hash d2e157616b039f93a4dc696b5b96938e
6e0e4a332b81a4388915f206f73d58dcde204b29
2cf032115b870ef9a2790db489949898c24d39f8b8e93ce82fe59adc9255405e
GET /420x210/GG202006050826060263000000000000_travel.jpg HTTP/1.1
Host: cdn.dealsfor.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/jpeg
content-length: 17960
x-amz-id-2: +jmNAUjjBw2hbB920mmdDVmSVrE7+aPyB7OpV4R5urq4cwxHFTmHcVfVf5hvJ9rh0pVjldA4qQQ=
x-amz-request-id: G0SS5X69TG09BDGC
last-modified: Fri, 05 Jun 2020 08:42:55 GMT
etag: "d2e157616b039f93a4dc696b5b96938e"
cache-control: max-age=86400
cf-cache-status: HIT
age: 4839
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oAtSWxzIDUxLn82s3u5WjFuwGiZ7srdQgTU9RS6j9v%2FgwjpYFbUZa28czZOEPmMKSSIj5W4hir5uihaKyHb9Eh8qqAw5%2BCTUpz78NoIJQMJEdpArEpyXEe%2BQKkxTOBFA%2FfOb0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa137c75b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.dealsfor.life/210x210/GG202006090809160963000000000000_decoration.jpg
200 OK 13 kB URL HTTP/2 cdn.dealsfor.life/210x210/GG202006090809160963000000000000_decoration.jpg
IP
File type JPEG image data, baseline, precision 8, 210x210, components 3\012- data
Hash a950c8fffccbf994e7eab4cbdc4afc79
0ae9de6c62eb474f9fc1d3fe74240c92d555711b
c430a67352d95e657b6f81cee177cb771a9b8b289a66043021386d8b069f20e1
GET /210x210/GG202006090809160963000000000000_decoration.jpg HTTP/1.1
Host: cdn.dealsfor.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: image/jpeg
content-length: 12794
x-amz-id-2: 6wnXaESSMB4fqASE7N+8ehTPOVbYvW3DlTDmjNmF7ppTk38+FuY2X/Q4Cz9O3q+wkmPY2nIV5dQ=
x-amz-request-id: G0SH0AH2J6PTJ52B
last-modified: Tue, 09 Jun 2020 08:22:03 GMT
etag: "a950c8fffccbf994e7eab4cbdc4afc79"
cache-control: max-age=86400
cf-cache-status: HIT
age: 4838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hHA61RHMwnd2X%2B8oFFmNo%2BZGdED7QVhM6ttFWt4kjcIp6WYlllPfE4vyxAyJWG4minMibh7CYZreJ7AeSATr4koKUqHoMWwpROAVtu8LqRTxncLftLz6o%2Fdo9%2Fk8vmZd63RCXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa137c7db524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/controls/e24/css/style.css?v=1.2.68
200 OK 788 B URL HTTP/2 www.pricecomparedeals.com/assets/www/controls/e24/css/style.css?v=1.2.68
IP
File type ASCII text, with very long lines (738), with no line terminators
Hash 8d9aaea2a28b65f2a1b897ccc93f06c8
9dbd09e6f47e39e044aa7d60212f6fd137af1529
42eae9de03054a5117dfe5beb2ae3fe9c14599c976eef6032184152b4e31cee1
GET /assets/www/controls/e24/css/style.css?v=1.2.68 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=846
etag: W/"846-1664277924000"
last-modified: Tue, 27 Sep 2022 11:25:24 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6088
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O5cU0ZW66o8RqJLcvOHxOo2erF82QL49Z9I0eUxrkisgVwIS8ELiX8GlFnwRox2IfCSaRs8C3mr3CWDm16nrqCiRx1ESpKhxfcO1FT4xoWxWlDyXwDPOK0i7prQo51bDL%2FQzqCGcVysscD%2B%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1299d40b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.7.2/webfonts/fa-solid-900.woff2
200 OK 74 kB URL HTTP/2 use.fontawesome.com/releases/v5.7.2/webfonts/fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 74348, version 329.31064\012- data
Hash 462806316fea535a6a57651bc2b000b0
80644191098f863f25be27841c0d92c452cf2327
4f9ee3d8f6e621642979e6a8f7e75c57cb9da34918cc08a38abfe178dbae1dd2
GET /releases/v5.7.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pricecomparedeals.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: font/woff2
content-length: 74348
x-amz-id-2: J+TCEEA3qk6FQWHghM4SKvqBsApkdIY40j8qTWhKSiNYXZGvaSZ9BNBODiFCVs8jlLXb1VmK5G8=
x-amz-request-id: ECJAV207Q16X7FM2
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:18 GMT
etag: "462806316fea535a6a57651bc2b000b0"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1320594
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KH27W%2F%2B6H3k3rdqjy1ppcQJRsoiUDmiedS7XyXaPBRfmmuFEzXhh4Rq2oHin7FquAkfIg3i4dM1uR7rkFqljyappdRZk6Mj2HUhCt1CDzz8nuajLmMmGTkOPQWfM2nJ3V3T7mnJs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829aa149dc97759-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b8166fe0679d6ccf83bc7f27cb76f6a5
7c76f9e3b7cd828fd0bd9ddb3603e0f1c8fc6f23
d0799689c53c389718f8818863c88447440e69b8837264dbe7a24e62a746e1e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b8166fe0679d6ccf83bc7f27cb76f6a5
7c76f9e3b7cd828fd0bd9ddb3603e0f1c8fc6f23
d0799689c53c389718f8818863c88447440e69b8837264dbe7a24e62a746e1e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pricecomparedeals.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Dec 2022 18:52:41 GMT
expires: Tue, 26 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 478668
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b61d699aa0054d5a41dbd1a53d98bcdf
ebd5ccd0ab0c4c11f33676f2cd735077d03b9372
3b87e7946d9dbf965d551dfe9578a6dfbb83dea561ba81404eaa9d82869bbae9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6455
Cache-Control: max-age=102860
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:29 GMT
Etag: "63b010da-1d7"
Expires: Mon, 02 Jan 2023 12:24:49 GMT
Last-Modified: Sat, 31 Dec 2022 10:37:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/pt_BR/sdk.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js
IP
File type ASCII text, with very long lines (1957)
Hash 3ea237b23ccceff41e255ca25cb8de22
0d6f32e417b6ceae89970457641e6f5782690945
f9305ee3e406b71cd700dc5ccdc599e62982445eaf39ca81d75f1073c21054a4
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pricecomparedeals.com
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 55c8ae8d5f60cc1cb7c620f3596b77a6
etag: "941d75b67a8b6c17775c6a60744403c6"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 01 Jan 2023 08:09:24 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: PqI3sjzM7/QeJVyiXLjeIg==
x-fb-debug: 06ymWxt+tP/Ww99hQfM+7647YDAPAEvfVU7CHvzSH655xPr8H4Rh9lkMVjjYbnfuuP9QZLZc81jV2fb57TqKjw==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Sun, 01 Jan 2023 07:50:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b61d699aa0054d5a41dbd1a53d98bcdf
ebd5ccd0ab0c4c11f33676f2cd735077d03b9372
3b87e7946d9dbf965d551dfe9578a6dfbb83dea561ba81404eaa9d82869bbae9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6456
Cache-Control: max-age=102860
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 07:50:30 GMT
Etag: "63b010da-1d7"
Expires: Mon, 02 Jan 2023 12:24:50 GMT
Last-Modified: Sat, 31 Dec 2022 10:37:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.pricecomparedeals.com/assets/www/libs/wow/animate.css
200 OK 83 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/wow/animate.css
IP
File type ASCII text, with very long lines (55063)
Hash 58dbebd18b3307e0364ca30110dbdf72
7e8a282c7b15b079693ade295702815a04e45abb
0f85b26d557faa9528575aff3fa1246499831523253e61a2403f88a992d02723
GET /assets/www/libs/wow/animate.css HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=74096
etag: W/"74096-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6088
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VUvg5RcXgQ12RFvaF3ApuRPrrhgGiA1eNVFfQzuIad49hCWwa4%2BAnrEL4HR8a68zjf8YvLvWdpfGlqHEEBaKyoEdEyAD73NNvNKrJBMPTLBatPv0pV2iKFnbqpnGrOwObwHKJ1vXNOXj79FU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1289be0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/pt_BR/sdk.js?hash=32baef33f362e0866c34ec3152677b08
200 OK 87 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js?hash=32baef33f362e0866c34ec3152677b08
IP
File type ASCII text, with very long lines (13192)
Hash 51141681bd2a6b5ff123ef13c7244b1f
db37417d1d61fd1373eb3f9d8d13acec6f9cfff2
27c7e2259ce088ba376700019d80586e9527d39b17282e6a727271b19d4bffc6
GET /pt_BR/sdk.js?hash=32baef33f362e0866c34ec3152677b08 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pricecomparedeals.com
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 78028b7d3bedad943df40ab3351aa293
etag: "c80a6cd5c95f4ec61d28452455db14ee"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 01 Jan 2024 06:49:14 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: URQWgb0qa1/xI+8TxyRLHw==
x-fb-debug: OFdR0IIZW9LgzV2Qgaq/yT4c0f8RnUl0Ucxw+bLTYqAkj3T1s2EEp9fJ9RJH4jmz9mIT6Ypn9PUfQ0DUG0m3AQ==
content-length: 87072
x-fb-trip-id: 1904183273
date: Sun, 01 Jan 2023 07:50:30 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/autocomplete/autocomplete.min.css?v=1.0.1
200 OK 2.0 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/autocomplete/autocomplete.min.css?v=1.0.1
IP
File type ASCII text, with very long lines (399), with no line terminators
Hash 488b858b865ef52a67e0d1e8223242ba
5dc177f7ad155efc2545305c551399b0d2844f45
43d3531b882df2026882a6cf18bbb7c41eea9b89fd9ea42ea1e9ab5cb503c213
GET /assets/www/libs/autocomplete/autocomplete.min.css?v=1.0.1 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
etag: W/"399-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6088
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D9ReuOl0Bqc3S3orgp64K03af%2FqokL9ipUeB0mca8xBqNd8YcKOjhPU301%2B%2BObjSnEI9rZQbKP4D%2Bp2%2FKniMKGBIz7T2JysAkLymnjQD9tmBTjTSNEKbrwew5iODevABob%2FJ8HksrqiL5SJw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1299ca0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/css/style.css?v=1.3.79
200 OK 19 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/css/style.css?v=1.3.79
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0920a7c5946ffc5b3c5dd7e02b92b88c
90dd7ef54df61acafa80b4dd737c207b4dab2367
aeacb8e1609e793b41fb649b41cc1adb8f2c18e3a5005e456ba552ce15c312fb
GET /assets/www/css/style.css?v=1.3.79 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=102160
etag: W/"102160-1635964336000"
last-modified: Wed, 03 Nov 2021 18:32:16 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6088
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OzLmVBBIoRxT4DD6JnbNw1bi5H7QVTkW0%2BUxp87OkAA3o7P%2BRNrWJj5X3y15wSEi5TrNudMVHWXh1I35zgBqSGp%2BoxSBZWgZqv22AMRPAXSU4gtAjQ0XPHDnQhaTUynctxOGGLNbqzdwNLRD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1299d00b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/slick/slick.css
200 OK 2.8 kB URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/slick/slick.css
IP
File type ASCII text, with very long lines (1330), with no line terminators
Hash 338999a2e3e5fc727e85d3b0e19f4c1d
6580da17358b7b6ba5b80a9728e9728b37a4becd
45ecc57af1b0f04beea74a5438994dfd671fc9859fba39e1dbf01366e07a7fc6
GET /assets/www/libs/slick/slick.css HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=1776
etag: W/"1776-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6088
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r8WrmZrHRdI6oyZ0b33tg%2F2AtlMsiG%2BLvOp1KBuugROCXtKjVRKUDVk0g73Nu%2B%2BE5dBpYEOFItvhdohO7B4P%2FZPGxWfRnqdEFoc8WYV5xKDHbnR10kvVFVcDIdDbJYFtC4YqRVPg%2FwWQctWF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1289c30b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=387357745142349&ev=fb_page_view&dl=https%3A%2F%2Fwww.pricecomparedeals.com%2Fno-no&rl=https%3A%2F%2Fus.slowww.xyz%2F&if=false&ts=1672559423092&sw=1280&sh=1024&at=
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=387357745142349&ev=fb_page_view&dl=https%3A%2F%2Fwww.pricecomparedeals.com%2Fno-no&rl=https%3A%2F%2Fus.slowww.xyz%2F&if=false&ts=1672559423092&sw=1280&sh=1024&at=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=387357745142349&ev=fb_page_view&dl=https%3A%2F%2Fwww.pricecomparedeals.com%2Fno-no&rl=https%3A%2F%2Fus.slowww.xyz%2F&if=false&ts=1672559423092&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 01 Jan 2023 07:50:30 GMT
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/A/2/ALH2863282/ALH2863282-1-7f8e-yDk8.jpg
200 OK 5.3 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/A/2/ALH2863282/ALH2863282-1-7f8e-yDk8.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 67dbbb6b6de436c9a759648701341d80
feef71ffa83a8fed0756a84b65e43eab28ba3c3b
d615cc0bdfbcf287f8f205cd8743c7c576abfbec31dd10a4768942decb0f32b3
GET /product/xy/500/500/p/gu1/A/2/ALH2863282/ALH2863282-1-7f8e-yDk8.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 5300
x-amz-id-2: gZxwIjyOS5oCc643B5O2MGlKF7TvC32mWKqLo6BBNiX34T2O8p3G6uUGr7Vg8npoe3RWPnGClwU=
x-amz-request-id: 2PYN0CA93NEB6PHE
date: Sun, 11 Dec 2022 01:05:28 GMT
last-modified: Wed, 02 Sep 2020 07:08:06 GMT
etag: "67dbbb6b6de436c9a759648701341d80"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -RETfRPqIry7R3KXWdLVVAKC2uhIOCCE27BaF1eywbinWSBzDhIqng==
age: 1838703
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/P/W/PAE1047W/PAE1047W-1-9dd4-y1XK.jpg
200 OK 12 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/P/W/PAE1047W/PAE1047W-1-9dd4-y1XK.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9c5edcd2465f2eb2fa572dbfc2862e11
8084a50ed7762ef9a56bbb2c38ee9d079e18055b
92f3542d592b0555f28cd6e00e7023f9826157d9ed87d13665a9487f88e6cf91
GET /product/xy/500/500/p/gu1/P/W/PAE1047W/PAE1047W-1-9dd4-y1XK.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11796
x-amz-id-2: 3uRHmbWY3PB866waDcwEi0xCeHPk9IlijHDaInHvL3EaBYmvyetH8xyxMvQyvl5jAGisW5Um7es=
x-amz-request-id: 8YS6K16EPR7EDE12
last-modified: Mon, 06 Sep 2021 13:31:22 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Dec 2022 03:48:55 GMT
cache-control: max-age=2592000
etag: "9c5edcd2465f2eb2fa572dbfc2862e11"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vV9T5nETEqAPXSOMEr0F84a-dqhL4DV89BW3EYZKnJGOubsMmSVGvQ==
age: 792096
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/Y/1/Y9205R-11/Y9205R-11-1-fed9-tfGW.jpg
200 OK 28 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/Y/1/Y9205R-11/Y9205R-11-1-fed9-tfGW.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3896efc1dcfea7c08d6675bfd5766f0f
f50fd470413af35421cb57e685dcf95f0bd12aba
168ce1f7dbc81c35c3845b550e03c62d7a868f3dd4a05b8af975a21c976c2c7b
GET /product/xy/500/500/p/gu1/Y/1/Y9205R-11/Y9205R-11-1-fed9-tfGW.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 27506
x-amz-id-2: elkcXhqBypZ7NxHTQy7lmHYNIU0+TXaLYMzXnHJTsennNXDqVeGxhdG4IjQZ7N1TTtbJL1Zm79k=
x-amz-request-id: XH5Q5QH4ZS1QQ3HQ
date: Mon, 05 Dec 2022 00:27:27 GMT
last-modified: Sat, 29 Sep 2018 03:29:36 GMT
etag: "3896efc1dcfea7c08d6675bfd5766f0f"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8dee074Kfxodx8wFF0VyzcyUa3A3Nk1PhBAtTHHKImQmR5YrLMJYuA==
age: 2359384
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/Y/2/YA16506-2-12/YA16506-2-12-1-31c6-r6Ai.jpg
200 OK 34 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/Y/2/YA16506-2-12/YA16506-2-12-1-31c6-r6Ai.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 020937fce16dd14ce0aad41ff0cb1c75
ba5d177468469f75f642889677e5d5ef12ae6c8a
30eca2bc0f26239f9023cf86c8e31ded5e066deea5ca989f4f8a4c711a3cdf04
GET /product/xy/500/500/p/gu1/Y/2/YA16506-2-12/YA16506-2-12-1-31c6-r6Ai.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 33658
x-amz-id-2: GJhprgPvuLS4iJbwlfLju25Ip1TU6Bmt58dgfQ/50C6RXAtg/7XZlGrjOrd68RKiSpkalgB+PMw=
x-amz-request-id: CM4BWHZXRMKRBC6D
last-modified: Tue, 11 Aug 2020 19:27:06 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 29 Dec 2022 00:25:00 GMT
cache-control: max-age=2592000
etag: "020937fce16dd14ce0aad41ff0cb1c75"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DaqH-odLujjPSkRs-N9n-do20h6JbfUG-OuYagLBD9JuwadPRHDezw==
age: 285931
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/I/3/I8433/I8433-1-a679-gUAB.jpg
200 OK 22 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/I/3/I8433/I8433-1-a679-gUAB.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 955a47cd5b9d1b232a22da1c1caaac01
55ec3ecb6c25623208d7ff1f3ba3d98bcd548973
08295d1ae38f22af27665178cc7b52f0aac9fdb948010c478e6e124bce0465cc
GET /product/xy/500/500/p/gu1/I/3/I8433/I8433-1-a679-gUAB.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 21906
x-amz-id-2: skg86oG0iwUBGw9t7SV5pbfoGYujIp6/oqNJ1Yw4jV6Az3bDJTC9srBm9hJ6l58mrPE1jH3SojE=
x-amz-request-id: C80PYJKTNSXGP56E
date: Wed, 14 Dec 2022 00:49:54 GMT
last-modified: Tue, 07 Sep 2021 11:09:09 GMT
etag: "955a47cd5b9d1b232a22da1c1caaac01"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9-RrkiylVKuLrxISJwf93hkPrSoCv_TVJPI6NFWzVntSydaKZ0q0Lw==
age: 1580437
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/H/6/H39266/H39266-1-2354-BywI.jpg
200 OK 38 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/H/6/H39266/H39266-1-2354-BywI.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f5c3ee740fc222e090fac9bb3238f138
d12bd8795e4c5974d87aa4370b21ac39a473f771
ec067194d1fe192434dd31fd4fc0e9e86a55a834e42e7530129c042f97384197
GET /product/xy/500/500/p/gu1/H/6/H39266/H39266-1-2354-BywI.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 38160
x-amz-id-2: 4sWJK5b4tmm8THtS9M3+o13yG0B7lD+zVjHb7GYVrPhx832da3EJ4ixdkL31VOVn3r2fHQsPn6g=
x-amz-request-id: 28RYT0J3QJMF9P4N
date: Tue, 13 Dec 2022 02:43:54 GMT
last-modified: Fri, 19 Mar 2021 03:15:47 GMT
etag: "f5c3ee740fc222e090fac9bb3238f138"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mKZsijcKyHxBBAaPStboYAgIJAUcGBUM5i7wLuDIGt71C9juQT7KsA==
age: 1659997
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/K/3/K11543/K11543-1-079d-fqVj.jpg
200 OK 65 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/K/3/K11543/K11543-1-079d-fqVj.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffd616e9e0a0ef730126463b79c2ec1d
772c4a1760b588ba1e60488698a147bf9c8c7e28
df467851947fa771bf8cf27c76be6be2b4e3c297a30466b7dd529442ab718665
GET /product/xy/500/500/p/gu1/K/3/K11543/K11543-1-079d-fqVj.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 64738
x-amz-id-2: wzO3y78jHTOt+9CvTQet0BibQH2Iq9oco+LR5FTGwDpDZt32CxTsY7Cub2xWN0ksQ+LGK2nOMfY=
x-amz-request-id: 7N3YZ6A1Z95VW5DM
date: Sat, 10 Dec 2022 00:43:53 GMT
last-modified: Wed, 14 Aug 2019 11:12:53 GMT
etag: "ffd616e9e0a0ef730126463b79c2ec1d"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tSQ4zN6xaebl9TFgNgCKoLcVRn6oKx07pj7zPepGLnwmFkXUpJLJNA==
age: 1926397
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/V/W/V7679W/V7679W-1-1924-MXP7.jpg
200 OK 59 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/V/W/V7679W/V7679W-1-1924-MXP7.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 04686c37e29d96a027bb5930f702369f
86f6bbfef81c2c2bfc58777281acb53d81f0628d
a680ce58966a29f38200277d5c68397412798422ed1778a992ec7fd10d39c314
GET /product/xy/500/500/p/gu1/V/W/V7679W/V7679W-1-1924-MXP7.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 58850
x-amz-id-2: b854V701APD3hMRdzQEiEW/i1Nq8kQbcUBJs5rFD1X5851hrKwzJlLofK4u5Kts4PptNwKn8eVg=
x-amz-request-id: 8XDSDDE7ABTJ9Y5F
date: Wed, 14 Dec 2022 01:17:22 GMT
last-modified: Wed, 03 Jun 2020 09:44:11 GMT
etag: "04686c37e29d96a027bb5930f702369f"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x2Bfq5Y990OwVIOtL7SHYH3pVxZqmCrAcv-OKv5jZbydebaueAcnZw==
age: 1578788
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 68f6e6455483848ab33dbaa41381d023
b96490ac24835dfce87ce587691d3eaf8eedb79f
4015c9a1be3d50a2c4531701750ba168f2a24297db64087c25bb952157e3a6ce
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89716
Date: Sun, 01 Jan 2023 07:50:30 GMT
Etag: "63afec47-1d7"
Expires: Mon, 02 Jan 2023 08:45:46 GMT
Last-Modified: Sat, 31 Dec 2022 08:01:11 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -ncd6KWSIzm1ikHJCbdoS7W8L1Q3iRYhYbwSe8XUwcgSrc9eaw9O7A==
Age: 2675
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 68f6e6455483848ab33dbaa41381d023
b96490ac24835dfce87ce587691d3eaf8eedb79f
4015c9a1be3d50a2c4531701750ba168f2a24297db64087c25bb952157e3a6ce
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89468
Date: Sun, 01 Jan 2023 07:50:30 GMT
Etag: "63afec47-1d7"
Expires: Mon, 02 Jan 2023 08:41:38 GMT
Last-Modified: Sat, 31 Dec 2022 08:01:11 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: boTWZECgWNQU5v52k3wEHjUqMX1YM2qLqi9n7uNMcUhB5Ca1RtxoHA==
Age: 2427
img.tttcdn.com/product/xy/500/500/p/gu1/P/L/PAP0216DBL/PAP0216DBL-1-7c15-KkZh.jpg
200 OK 48 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/P/L/PAP0216DBL/PAP0216DBL-1-7c15-KkZh.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c083577c9bda386c9ebf82debca7f27f
56e9060d558c5eeeec8433e855da96d35fdac660
ab139c9577bd9fb36b83d5ce6fa08656ea65af486cd32e791010d2d52215950e
GET /product/xy/500/500/p/gu1/P/L/PAP0216DBL/PAP0216DBL-1-7c15-KkZh.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 47590
x-amz-id-2: wmJvoq+zTBcXXS8S0HNv6pNcqWv1uFYcSEmH8IRVBGcKuqExk1C48uQ2b+oKS0ISdunuWHc+1VI=
x-amz-request-id: 4717NP57TD9F87R7
date: Mon, 12 Dec 2022 01:07:39 GMT
last-modified: Mon, 07 May 2018 08:33:41 GMT
etag: "c083577c9bda386c9ebf82debca7f27f"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bEhPajaecapBK9H-vfSPe7g9lB6kA_LfJS3e46zkXXBGZZP9_KrL8w==
age: 1752172
X-Firefox-Spdy: h2
img.tttcdn.com/product/xy/500/500/p/gu1/O/3/OS0313/OS0313-1-72c6-5g7F.jpg
200 OK 33 kB URL HTTP/2 img.tttcdn.com/product/xy/500/500/p/gu1/O/3/OS0313/OS0313-1-72c6-5g7F.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 75387b01723c44e846f337b3beb88664
f588691ef460485018cb6f8fa3451c4827ddd2ab
7653ae87979581a03904c275b9af32f6998070e0f3c048c7d3e133249d571b39
GET /product/xy/500/500/p/gu1/O/3/OS0313/OS0313-1-72c6-5g7F.jpg HTTP/1.1
Host: img.tttcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 32942
x-amz-id-2: M9VpK/yNaF8DCDrAgahoCUIbuq9k5ag61l8cFBp70Ri/1piDlVhAeUWOqtSw6nald19ifRCSXqs=
x-amz-request-id: QRMQKND7ZM61Y9AN
date: Mon, 26 Dec 2022 22:34:06 GMT
last-modified: Wed, 07 Mar 2018 22:42:42 GMT
etag: "75387b01723c44e846f337b3beb88664"
cache-control: max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TPZugoTc90X5hjuXFKl-CeUETkmwe3-WRbzWrYOrq8ALMTpUtCNFWQ==
age: 465385
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/fonts/icons-v2/icofont.css?v=1.0.3
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/fonts/icons-v2/icofont.css?v=1.0.3
IP
GET /assets/www/fonts/icons-v2/icofont.css?v=1.0.3 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=6105
etag: W/"6105-1626872164000"
last-modified: Wed, 21 Jul 2021 12:56:04 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QjvEIqPNVXRu2BC4Mh%2Frsli%2Bkb2zYEltn0NxoptH%2BUItNCL7Vsgi%2BUg3v5ADa5J2wbWquboX18%2BRL0UDFxRsfDu8lZuHOv%2BTAv9iwaEg1YFLbFDk6ZEIVKdLUdlpCgT5kJbHc3qX7aO%2F5NV%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1279b00b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-members/css/blocks/members.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-members/css/blocks/members.min.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-members/css/blocks/members.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:25 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 10 Nov 2023 21:58:05 GMT
etag: W/"636415e1-f4d"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 4441865
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YsONv0vkfHjjf3NsYZUNOSLYlsp6ZUVRlgG2GhTFxcCF%2B%2BI4UbdopGFqrChhhlSwRyVj12gPAKFc9lQwIu7F3Bt2MjaY1MuzmhsY0mbIwbouDS3A7A%2F%2FAZfYcrD%2FsvJFE2cOlgtx6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f149a5b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-child/style.css?ver=20150401
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-child/style.css?ver=20150401
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-child/style.css?ver=20150401 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 20 May 2022 17:10:46 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 23:01:35 GMT
etag: W/"6287cb96-679a"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18002928
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kAsItQ34tj7oMtZ%2BID8tTVKYYNkdEz5KiA5pYFkKhvmZhLaME1KfLSJ80JLULFc65%2BFLRi2VbYiV2dle8XPlrUApgHHiVLfohSlVC%2FMSJvUfGKWiAwtqD2%2FVC65MUlBSHjsjnSIBuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f169d0b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/css/buttons.min.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/css/buttons.min.css
IP
GET /wp-includes/css/buttons.min.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 02:18:46 GMT
etag: W/"613ac086-16de"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30974178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g1Uvh7afLrJdm%2FpAlYvz6qh2Vr8QB9N7tRYqhEh9HlvWwRiyzp2a583b3lGBBj0wGlpH39F9WPh%2BCOmQtyxbh1oyYotl65kARLlYLULEGE3D5ytaD1A9VhqZwrA23pe%2BpHI%2BBlycvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f189f2b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/css/dashicons.min.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/css/dashicons.min.css
IP
GET /wp-includes/css/dashicons.min.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 10 Sep 2021 02:18:46 GMT
cache-control: public, max-age=31536000
expires: Tue, 04 Jul 2023 17:33:08 GMT
etag: W/"613ac086-e688"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 15603436
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Af%2BeO8DK8ZcZaQckX%2BOtKGy3r46%2BFSWbtKQVoK%2BlHxtM62rrkXOi5Xn2E3Z38Bnf92khN5I10dFDByQIhz58Ps74zc3bctEYJi%2BI%2B9O3LcDBvqmuqkK1ZwWr986iRb65fNlYVq%2B8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f189f4b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/easy-slider.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/easy-slider.css?ver=20160930
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/easy-slider.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Thu, 02 Mar 2023 03:17:53 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 26368351
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cQJbReY6QXlWoUBrEuLVgGFy%2F%2BPsgaexge5dqBhHZyBN7UK%2BJyaUjiE8VN9FEDLdX0F7jt4smf3aSx%2FKwnYgfjsplhMHJxtJrvOGgx5z5%2F1%2B44rjz9oulkIhhpiMGdp7%2FA3J%2F4%2FfKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f169d5b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/ajax-search-lite/css/style-simple-red.css?ver=4.10.3
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/ajax-search-lite/css/style-simple-red.css?ver=4.10.3
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ajax-search-lite/css/style-simple-red.css?ver=4.10.3 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 19 Sep 2022 17:35:36 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Tue, 19 Sep 2023 17:40:51 GMT
etag: W/"6328a868-29c1"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 8950159
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YWaO7%2BAlidnzQwtXHxiN0sedinvihkHQm8YuZBmZvRpzJZehbMsxfNBekRQsj%2BNEpHsQDRhV0o%2BBIK%2BJwyo0ajw%2B0Lae97%2FT4LGAbIXbpnYFP%2BlychGGI%2FMPMMfVqvnuxteUy2Xziw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f19a02b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/Gv1jHiaHafY?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/Gv1jHiaHafY?feature=oembed
IP
GET /embed/Gv1jHiaHafY?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 01 Jan 2023 07:50:25 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=pEPeNWeuzGM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=wKZnFyoEyFk; Domain=.youtube.com; Expires=Fri, 30-Jun-2023 07:50:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+343; expires=Tue, 31-Dec-2024 07:50:25 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/js/plupload/plupload.min.js?ver=2.1.9
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/js/plupload/plupload.min.js?ver=2.1.9
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/plupload/plupload.min.js?ver=2.1.9 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 22:03:40 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 23:01:36 GMT
etag: W/"628ea7bc-3cfc"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18002928
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aDLZpAt2FASI5jcOp%2Fs%2B%2BnmRDxUanEik%2FKo%2FfqHFUmjyBkLnjB0XaiDQUKt%2B8f%2BcqEmI27bWoQQNHzqM3zS840b4wBX%2BwgLYeAvNDogbFTzYOYcHEI1KTg0FhNbL1zZwlxFoMyMB3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1ca28b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/js/custom.js?v=3.1.41
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/js/custom.js?v=3.1.41
IP
GET /assets/www/js/custom.js?v=3.1.41 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=45594
etag: W/"45594-1628102676000"
last-modified: Wed, 04 Aug 2021 18:44:36 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6018
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mDzTu5NRCFbjh928Gi%2BkCfFEkdkMccRfrQqpOBVCr5l5%2F%2BlL4wmbWKQez%2FvrDMyTbHfhbZdeaWpz07%2BiekaK5L%2FDno63aqofxC1zT076qhzhAaZy9PEkDaXm9WIIgFi4F5xCdZkpnGzIwjpp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ca570b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
IP
Analyzer Verdict Alert fortinet Malware
GET /far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/ HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,User-Agent
last-modified: Fri, 30 Dec 2022 20:39:50 GMT
cache-control: max-age=0
expires: Sun, 01 Jan 2023 07:48:10 GMT
x-powered-by: PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ktz2fySTgY2NmV4CNCGzIS%2FEFS%2Bz1nWPb6c9zG8ROuV%2BUN%2F4Cdi2BGoOFAM8FMU4gwOJ1xlaJ8PiBg0JnmW%2FpJkdi1NZ%2F4AudKPEPreXCnUaD3eKKRSG%2FrYCAr6TCw5Sdw1PsQACYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9ea1dc9b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/vcfixes.css?ver=20150401
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/vcfixes.css?ver=20150401
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/vcfixes.css?ver=20150401 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 22:15:01 GMT
etag: W/"5f6754da-2908"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18005723
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wvH%2F4IfTG9PJT7lvZQha4eknlgS7%2FjtsSqpP%2BX5rkEsaJC1AWrSen5xXafNMbJ%2Bqe%2FyV3ojTLnQFz%2FJPMuW2ZU9xKoJE846%2FOba4Ia%2BH1FtmGj4RKMA8rLsjl7h9AToSZmrkkRXucg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f189f1b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddy-bbPress-Support-Topic-master/css/bpbbpst-bbpress-widget.css?ver=2.1.4
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddy-bbPress-Support-Topic-master/css/bpbbpst-bbpress-widget.css?ver=2.1.4
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddy-bbPress-Support-Topic-master/css/bpbbpst-bbpress-widget.css?ver=2.1.4 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 30 Apr 2022 22:49:15 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 22:15:01 GMT
etag: W/"626dbceb-41c"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18005723
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zvT%2FW%2FDIQkGLgjUO6eHcLSgamN18CYkXFHfwxStSywtRMwKHvkckCazmurnGC6uKVeFtphz9zP3yggA1GtGsn1eEeKjGI6sw95%2B6iHHcBMdcRGLrD%2F3WLbfzmGiWK%2BerPpr4UEAAIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f19a03b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/fonts/icofont/icofont.min.css?v=1.0.1
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/fonts/icofont/icofont.min.css?v=1.0.1
IP
GET /assets/www/fonts/icofont/icofont.min.css?v=1.0.1 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
etag: W/"92208-1626872164000"
last-modified: Wed, 21 Jul 2021 12:56:04 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5yYwLIHTZ0qIdoUlFO%2B6U7tnaiJc3ZKkC1SDVnRGg38LyBrXMh5P6Q6ZxEv%2FKjgFBkCQ%2F2%2BgnC40jOnZwk8kt8kXcIOFPFjS0cKEZe5h%2BE0%2FgBbVdVKRK7slENbJD%2B8UQNf5UROodDcyYrdz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1279b20b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/slick/slick-theme.css
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/slick/slick-theme.css
IP
GET /assets/www/libs/slick/slick-theme.css HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=3145
etag: W/"3145-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6088
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xiYw%2BF1MbC21dNeqWWBGYqHwkGxrQWti7dnUC9eP5Rq6nsL3u1hbhjlOgjuPSy5gJKZUEfvXmPYFr4RdjNXRonTy7r88w%2FHQcTUs2MuRRahV2qU4cMeJLXW81bYliFOWqRmbhIkh4%2B3U8iiv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa1299c80b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/css/dist/block-library/style.min.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/css/dist/block-library/style.min.css
IP
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 02:18:46 GMT
etag: W/"613ac086-13abe"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30974178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IBKqKVLs%2BRdZbfKqkTcqlCeOh4HRxokJzYk%2F1E4Jrd7baFz%2Fx5FXkeR1iD%2FiALfg%2FdZVb9YYo3YdzmU4G0ABBxSXEXbg6wnM4eRyA0u9wjGlQ%2BYeRYGGE4c1niaz5cr6eusCCT9Zag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f149a1b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-messages/css/blocks/sitewide-notices.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-messages/css/blocks/sitewide-notices.min.css?ver=10.6.0
IP
GET /wp-content/plugins/buddypress/bp-messages/css/blocks/sitewide-notices.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:25 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e1-57e"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TDEzCFqf2tGAi3rLZjWIJ6aPO%2FTIT91%2FETgKg23d4OgGyTTfpSIPGhfNdniLldUAiRQROw1q5%2BHKHoas3te2x8802FwAdPXaRzwichfHvElu4QuL9NSzPvu6Zzkr01kSRu74zUvwxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f159b8b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/tooltip.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/tooltip.css?ver=20160930
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/tooltip.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
etag: W/"5f6754da-8a2"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30972312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=61Q9eI1mwL4YdIuYDWorCS2eteSFcWz7carZgm%2BNBBsCA35UwkrHac1pQIDi%2B%2BbCsDfsh%2FM%2Bc0%2BzluOTw1P37A%2Bb5NuwRCvpSdGFCcjS4O5gTwT%2FwBWzLtTU9As3oMmI5YoA7na1Rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f169d6b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/js/mediaelement/wp-mediaelement.min.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 02:18:47 GMT
etag: W/"613ac087-105a"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30974178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MjUe%2Fl%2Bo%2B4Z10t0ibbKI5TRG2kryB%2BAl2q3bx5R6GLnmVgI27pP0Dstg0syJMwzuDQ1zy%2BQxJ%2BlukNHQyuO9juYwKC1S7eBoPolF1Fw4JwllUfZQ%2B3ORqV0r%2Fqz8fEn%2FNTrhOmKfkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f189f6b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/js/imgareaselect/imgareaselect.css?ver=0.9.8
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/js/imgareaselect/imgareaselect.css?ver=0.9.8
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imgareaselect/imgareaselect.css?ver=0.9.8 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Fri, 10 Sep 2021 02:18:46 GMT
cache-control: public, max-age=31536000
expires: Sat, 07 Jan 2023 20:25:12 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 30972312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nw%2BUi%2Brjo%2BrBK%2BE%2BHogYAzk0Bgb7Gb2k0PJzERhRjCdip4DbrUWC5vw7CcCaAXQgafj3JDdAHpEIY5wvpXIKoQG7Gz7hdOsN83%2BCIq6oSamU85cB2t9akmyLSR%2BpjpTUZLFCBdu7qQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f189f8b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/bootstrap/bootstrap.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/bootstrap/bootstrap.min.js
IP
GET /assets/www/libs/bootstrap/bootstrap.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"58072-1626872164000"
last-modified: Wed, 21 Jul 2021 12:56:04 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KGAobdaeaEdT6vp1IVzFXxgx6urzDZtKwmq00IqLNETPp5%2BTl9SvCyJR6FVwelfXRdzCEiKBGaupmAm%2FDx%2BQqf0akYH0JiG%2BaK2KvVNwJWe6Ws7CeUzFjX9QwFWCHSWHg4JkawjVMccG682u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba350b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-friends/css/blocks/friends.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-friends/css/blocks/friends.min.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-friends/css/blocks/friends.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yknl5tXGoURbOymhfcKFpdZ02tYA49l5hRy%2BHFD7IDuCWRoKOijH6spRw%2Fp5LoF1yRMQKDl4gSpB33WX5Mhvs0EjEXgHpGJXs3BDNBEZC9iM0a1JZlf8zyhNrJyGOwrfjDBGDM6lsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f159abb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-groups/css/blocks/group.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-groups/css/blocks/group.min.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-groups/css/blocks/group.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e0-7ed"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TcRrUenCCfQQrqQDhb9YmHQtSVaM3swOo9q2pPnzsCFfoXE78yTiL3Qn2kXHS9jy28nhYDksOzghFGlORWaRjq3XywWEWqiOenWH%2F6Szt4XJ75Fm1LKQjlUU2LQGCoc%2Bf1Ue3GG8ww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f159aeb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/css/media-views.min.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/css/media-views.min.css
IP
GET /wp-includes/css/media-views.min.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Wed, 25 May 2022 22:03:40 GMT
cache-control: public, max-age=31536000
expires: Tue, 04 Jul 2023 17:48:48 GMT
etag: W/"628ea7bc-b7a8"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 15602496
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1f17HG%2FBPVDxL9eXxptilvRTMUU48kpumVqwjpjaw3pdaEzoX9w66FAFV1OCwUYTff5EZUyDwhQFFj0eicd0XPegegX1JhIhctjWK29J7tMfI1XGOQinFqDhV6ZhU0imNhwPvHbp1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f189f7b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/owl.carousel/owl.carousel.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/owl.carousel/owl.carousel.min.js
IP
GET /assets/www/libs/owl.carousel/owl.carousel.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"42766-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Go1cJ6PcC2thuTzDi5x9JI0ilnnufsEspvjsBn0sK2CxELkBhpn0KqmEh0Am2fS5hhoZMVkkVDi%2BDKJNdzWmh2AKo5JPH4Vd44Kfqp6wMjCRdRq92nUwmMNUIBJ97lR0vssWowCM72nZo5U3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba4a0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-activity/css/blocks/latest-activities.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-activity/css/blocks/latest-activities.min.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-activity/css/blocks/latest-activities.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e0-755"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=waCpDF5y4TOYIRRWfMpoDfmBJkPvtHqHI6XajQHR4vtMTa%2BVtTa8SP0lYjnuElCvGtjb%2BKorM8i3%2BpHn4xjQajVvMyXir8aVkBGziLjuWSyrh03G%2F%2B3ZR36wfNXxUnDMt01up%2Fjzbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f149aab506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-child/style.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-child/style.css
IP
GET /wp-content/themes/skidrowcodex-child/style.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:25 GMT
content-type: text/css; charset=utf-8
last-modified: Wed, 26 Oct 2022 12:20:29 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Mon, 01 Jan 2024 07:48:11 GMT
etag: W/"6359260d-6871"
x-powered-by: PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NDa71yPrlcCOLAIW8TKPyhDcskwpvnPlBgFpL4zxq4A2Od5ZUmDF2qyj9J2WqPG6O0jn3pSN3GeR9sPY6%2F7EcQfErfhsVw9gW%2BZzNUQFPfJNv6fCOptrClDXlRBwUXb0%2FhG2Tzydiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1aa0bb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/autocomplete/autocomplete.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/autocomplete/autocomplete.min.js
IP
GET /assets/www/libs/autocomplete/autocomplete.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"4050-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XUCwy4OChARj2PtV0GTu3McJWX8AvIxoOq82hOo2F6wzlFtXWHBGNSekHGpcD%2FKdj9mrUFXJrSTSstnDeQdUoZpqYVfPTcOKETMXTgQo0oaGZLoLJvLDOfVnKl1rEw2YVwrfKqX76APm9FRo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ca550b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-scroll-to.min.js?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-scroll-to.min.js?ver=10.6.0
IP
GET /wp-content/plugins/buddypress/bp-core/js/vendor/jquery-scroll-to.min.js?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e0-8e1"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1n2msqH0HGOOCQF5Ij5YGpcyb%2BDpPsqp8i3hYDKEB0%2BdkYjeCl9qUNpu%2BOr4pxtXeCtjvpZWn4iQ7ck8EPI05YadIoWCOCVLBg4BNaXF3Vh4lFlrKWT9wTHX1U467MMK4aI1sWBXRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1ba1bb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-members/css/blocks/member.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-members/css/blocks/member.min.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-members/css/blocks/member.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:50 GMT
etag: W/"636415e0-76a"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YiSpeIs1x45WVZRQAFJ4iYK8HUil132EKFfkQGKaCVWz%2F6W%2FLBjX3u5OUuXwImQv%2F6d5ktVfYYo2T1DbR%2BEZFkPiLMxFBCUjExWhX3nOdM%2B0CK7mEppnvLzIUbBmzmVK6QozIq%2BeoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f149a3b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/responsive-full-width-background-slider/css/rfwbs_slider.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/responsive-full-width-background-slider/css/rfwbs_slider.css
IP
GET /wp-content/plugins/responsive-full-width-background-slider/css/rfwbs_slider.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:47 GMT
cache-control: public, max-age=31536000
expires: Wed, 07 Jun 2023 00:33:02 GMT
etag: W/"5f6754d7-840"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 17997442
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J6BoCGDnzyAwGkFENkwONkJpSZwi1Sy%2BXOQkL3UQvVGwLsgufB8wGcCTnQ03WZnA7cchz24IWHd6bV23%2BNGIu2AkrVAmZu2F1zpAakD7Jq2D%2BLQnNYtalNv3IPHX50QXFCYQDue%2B6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f169ceb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/buddypress.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/buddypress.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/buddypress.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"62d880ff-e393"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=77ETrmg3BcBVUbPUNoB1W10GzF3POFX4Y12kCdXWTQz%2F%2B534s9aOnRoDqkDOUuU6nJ1SdAcKXYJUz8ed67q3NevVJgI1ldYUPx9BpGMLLpNymCLdvRThNz%2F70HjYFOGke4JzNQ8bQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f169ccb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/css/site.css?ver=1.5.5
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/css/site.css?ver=1.5.5
IP
GET /wp-content/themes/skidrowcodex-main/addons/clan-wars/css/site.css?ver=1.5.5 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 23:01:35 GMT
etag: W/"5f6754da-1548"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18002929
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EYTCOJlRKLXcpXymlhYkhwy3TWwEIvwtFGIZGo9EAPdaXKntI%2BL%2FOe9bNp4528W%2BRQpWxUv%2FeNJQa9SF5p6mjr%2FOhYNdd3UzdPTl%2BFnMFhQgXI19K%2BscKsf0AJ34n80yKCsWm9X9Gw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f169d1b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/jquery.fancybox.css?ver=20150401
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/jquery.fancybox.css?ver=20150401
IP
GET /wp-content/themes/skidrowcodex-main/css/jquery.fancybox.css?ver=20150401 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Sat, 07 Jan 2023 20:34:09 GMT
etag: W/"5f6754da-d6d"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 30971775
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NxFkwbUHLhyH0Rcs7VB7aeN012OQJl24NgHHXKnPuSejVWT1HFkx92BlsgEdBL8jhl9E9J9F%2BkjKPvtDe20CNAFdHLgmUGqMZvlXmgKcbd767CUK7GDfnwRBIo81rA4nLvDD0bDprg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f179dfb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/base.js
200 OK 0 B URL HTTP/2 www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/base.js
IP
GET /s/player/21149d65/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Gv1jHiaHafY?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 607695
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 01 Jan 2023 04:42:58 GMT
expires: Mon, 01 Jan 2024 04:42:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Dec 2022 01:17:46 GMT
content-type: text/javascript
age: 11248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/bbpress.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/bbpress.css?ver=20160930
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/bbpress.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 23:01:36 GMT
etag: W/"5f6754da-57f3"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18002928
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7XhX9peQSNHb%2Fhby%2FuDblp7Xg%2Fxyri3mb2zjRPMNb3p2EUdGYV4%2ByNTiVrHd%2BDpFvHQD7pceRc60QecABMY7EiJsCyIn6im2uxUOmyUmISAys5VvHiYJHeCNiR3qHis10qbMhWM0yA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f179dab506-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%20%20%20%20%20%20%20%20%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%20%20%20%20%20%20%20%20%7COpen%2BSans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen%20Sans&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%20%20%20%20%20%20%20%20%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%20%20%20%20%20%20%20%20%7COpen%2BSans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen%20Sans&display=swap
IP
GET /css?family=Oswald%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%20%20%20%20%20%20%20%20%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%20%20%20%20%20%20%20%20%7COpen%2BSans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen%20Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 01 Jan 2023 07:50:24 GMT
date: Sun, 01 Jan 2023 07:50:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tipsy/tipsy.css?ver=0.1.7
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tipsy/tipsy.css?ver=0.1.7
IP
GET /wp-content/themes/skidrowcodex-main/addons/clan-wars/js/tipsy/tipsy.css?ver=0.1.7 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Sat, 07 Jan 2023 20:25:12 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 30972312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gJUuEkUHOiu5qFdUTDn9Sy1n5aEuOEh2nPYhTTVqNctYlXGA7w7DO%2BfzLVNPYDIP944%2B3t0DF4FmszR4WEKUCoN3GzdoFUkjfAICq9KIG%2F09085gdy2A8S4gQgyeX98dCQzKkz2atw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1499fb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-groups/css/blocks/dynamic-groups.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-groups/css/blocks/dynamic-groups.min.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-groups/css/blocks/dynamic-groups.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q2EERfl17QNyiB9W5eeLhKyN3e5kJfx4FNkYiEIKlvsn3CsKYQq%2BnXYXe4Ia8%2FEdzcMu9Y0y4R1ag3nC1ulLEtonHsuaHf9AB%2BaUAkZ9I6tmtuOSVGc6iEQ12rbdvTrkB3flhT2kVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f159b6b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Wed, 20 Jul 2022 22:26:08 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Sun, 26 Nov 2023 10:22:34 GMT
etag: W/"62d88100-2bf8"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 3101178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8D65RMgFEilD63Gu1kD1mtX3pWh7D1JyVEgnyh%2BhT%2B3xUMz57DbqYnQLOKHtk50ziI%2BnUmG4FGdWznSZNUHQKTT2PpiTAdMlJX3Tv6ab2olv%2F14t9UOldgmdlNpBS7%2B5kqfZRYnT%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f189f5b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:26 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 0866d964bf090c0f5541f663df1eaeae
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 01 Jan 2023 07:50:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=asj4UzQ5DQffFp8NG%2FialEtvq109hnNEEncOSzlNNA4FWnF89E3yRg9GBQ6TIP52CbXZegozt15OGBaGng1u4iv8i5%2BD9bK0il93y3wOW6n9jBByiOgBDEiZPPP%2FXfr%2F6V1i2%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9fbeee372e4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/validator/validator.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/validator/validator.min.js
IP
GET /assets/www/libs/validator/validator.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"7729-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u3r%2FGQYQa9FpIy15k0bdu9FtZ%2BiUcRBa1NEPTj3o%2BLGLi7W1niLjoacRk8MoIWZF0zUFeZS8qcpvO8dGYRkMuR784uLp8ih7NylnWMcr5fYa5XIFZUfq%2FI%2BxpIXqOm8ZDFjltxv%2FtM%2FVY4vi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ca540b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/maskMoney/jquery.maskMoney.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/maskMoney/jquery.maskMoney.min.js
IP
GET /assets/www/libs/maskMoney/jquery.maskMoney.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"7029-1626872164000"
last-modified: Wed, 21 Jul 2021 12:56:04 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x9cyP7GuBHKDps%2Flx5O1257KzDVj2VarqH23%2F0w7LV807S0zRfI1b7yFDTeeKYqCky%2BinwYYm444BBv4AMVz0htPYIMJZqBXCzHMBM279gaX20CxXQKa5XOuxOKEgLfAPiDjr9IEtgjJe%2F08"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ca520b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/bbpress/templates/default/css/bbpress.min.css?ver=2.6.9
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/bbpress/templates/default/css/bbpress.min.css?ver=2.6.9
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/bbpress/templates/default/css/bbpress.min.css?ver=2.6.9 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 30 Apr 2022 22:47:23 GMT
cache-control: public, max-age=31536000
expires: Sun, 30 Apr 2023 22:56:51 GMT
etag: W/"626dbc7b-761c"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 21200013
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yXWnPwWyxhgkf2kFc2gYLzWf3KbOrIvN%2FPDHSIcUuWy0yOtqhCWkOVLQMYbk4yDGPZCnNalAUe4IUO8wfUC0N%2FWzdINqqUOBqsJ40V7XKx6JsAtwEgqm%2BPMbJqCK9xdW6vU4USurOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f159b9b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/bbpressmoderation/style.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/bbpressmoderation/style.css
IP
GET /wp-content/plugins/bbpressmoderation/style.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sat, 30 Apr 2022 22:50:15 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 23:01:35 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18002929
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M1eEeuK2T%2BNCT5sxTZqq84k9XtnL1UIFKvxhY1joWy2EsfGMRV8e3ZA46M%2FbZk3oeyqTdKbK9wStwtO%2Bh8UayXZj9wkSzqMcLhAhZMtzS%2BTpWiPN9mNgANG2NdyjvPc1GBZzUVDXbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f159bab506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/bootstrap.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/bootstrap.css?ver=20160930
IP
GET /wp-content/themes/skidrowcodex-main/css/bootstrap.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 21:32:27 GMT
etag: W/"5f6754da-1fbf3"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18008277
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wGWe9Nt0UsDyKJOvpfjsknbPlclZ8DOVQKGOKxKhqrVGTpQMjyGiIFU36otkK%2FVvnT77%2BNNiqMnunQQ4jhDsfJBl1Ms6K%2B3AP64u3zKyobpRRvYLJh6yDBqRXA2MK0BBl%2F9qxVZ7XQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f179d8b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/animate.css?ver=20150401
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/animate.css?ver=20150401
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/animate.css?ver=20150401 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
etag: W/"5f6754da-d063"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30972312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5XOaenEfAL8W4ApNS1sUYaDsI28pQNO1CPJMDjze3Yg2vp0%2Ba4qjQiwZTx92HicZ3Vqq3Hzc2MHKZeDNShwXZafsoXrXBGcZo7GdyjUFLKogMUkhLDa9%2BtNVnz0w5JsyzXV798vgjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f189efb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/enable-jquery-migrate-helper/js/jquery-migrate/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/enable-jquery-migrate-helper/js/jquery-migrate/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp
IP
GET /wp-content/plugins/enable-jquery-migrate-helper/js/jquery-migrate/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 11 Dec 2020 23:33:05 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 22:15:02 GMT
etag: W/"5fd401b1-5c79"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18005722
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HqAFdPkUkDgiua2kYdklHMoMo93v1Hdd%2FegJC%2Brz2YyM05fHatvGE%2FHI7gKXJM38nsrtUVBbLyxEiabz7XZnL8RsNl0fYbor7%2BoK9bgLVP%2BxY%2FGk1rMJGVD8Nn3hiV%2BJQdOXWP21Lg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1aa10b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-groups/css/blocks/groups.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-groups/css/blocks/groups.min.css?ver=10.6.0
IP
GET /wp-content/plugins/buddypress/bp-groups/css/blocks/groups.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
etag: W/"636415e0-d81"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WyifFDAIPIKgr2n1SYDGH69GI3Wa%2B16fMA%2Fy3eTj7abHuJlwWe09GcWjdoowjcEwLyrGBjCW%2BiF6s1RXGIE8Irzfs7VZAfR%2FBAXmj3hjH80eAEyUsqj4L2S5vT6%2B879BlJsn1RxyGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f159b0b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/ajax-search-lite/css/style.basic.css?ver=4.10.3
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/ajax-search-lite/css/style.basic.css?ver=4.10.3
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ajax-search-lite/css/style.basic.css?ver=4.10.3 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 19 Sep 2022 17:35:36 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Tue, 19 Sep 2023 17:40:51 GMT
etag: W/"6328a868-5ddb"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 8950159
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XwcL2YlcOGYJtwpPagdvcs2sdlpGq8nLnJCboaPLPFkBeJ2lK%2FHI%2BgaHuY5QOqB38gAk08FhRRtMCSob8rOaEVB4wc37htq6J7zLmfxPg9hx9EgtjWO2xcbijvF6XE9yriSv%2F6Hndg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f19a01b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/style.css
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/style.css
IP
GET /wp-content/themes/skidrowcodex-main/style.css HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sat, 26 Sep 2020 00:16:25 GMT
cache-control: public, max-age=31536000
expires: Sat, 07 Jan 2023 19:54:06 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 30974178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aAixGeMf4yrQ1Tum0niWTUgQg2ujlzle8gU6U%2F8MDtTDAu1scWE9ORGYpdYo33jddezIGqDs9bSoNA61XWf7tK1R8UT955a6Fp10aN1%2FTRS1QsB3PjoPaWmG4w9WIW4z5AmXh%2FWhyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f1aa0ab506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/popper/popper.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/popper/popper.min.js
IP
GET /assets/www/libs/popper/popper.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"21004-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R7gBxRYU6eW1yDxj%2FpQgxvMUBRZAyYsK0uAAYNQFYxQUgBb0BX29EvPFAe7xBl601TxMkcMlKJNpwvvhZMS1Z1IpoPJ3453sZT0Yxf6Oj2pHgd%2FXIJBOFIbx4HVNSr8GSQ3fEgKtcX1zHXRo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba2e0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/wow/wow.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/wow/wow.min.js
IP
GET /assets/www/libs/wow/wow.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"8427-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AFYkDAGUKq%2BEua9lrdf8F6IGTZhuitGKSMKL%2BddyuUS1d6biNxjDJLkZqc1q1dpBvnLK17DNS8ddux2lG2Cmo%2BhGlL9amVq6TSrqkzxIsi2Ml4Fg7WmdPwvwZGIjgwWh%2F%2F3LcX8jFnM%2F12sk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ca510b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,600,800
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,600,800
IP
GET /css?family=Open+Sans:400,600,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 01 Jan 2023 07:50:29 GMT
date: Sun, 01 Jan 2023 07:50:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/controls/e24/js/pattern.js?v=1.0.4
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/controls/e24/js/pattern.js?v=1.0.4
IP
GET /assets/www/controls/e24/js/pattern.js?v=1.0.4 HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=279
etag: W/"279-1664277906000"
last-modified: Tue, 27 Sep 2022 11:25:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OK6zrtnxsEpaZo1h%2FLCA3dBPXwEzZyk4tQ3WALAKzAbZzgDhwwABBE8vdMMPI9Pl2Bg18bljx1dxsyvvrW8rX8I538T%2Bd5ocKPE5EeBUiWHDQTb41NBAvmv0zB6XH4sbcXT2zxQpHwzrIxxV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ca560b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/main.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
etag: W/"5f6754da-21d5c"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30974178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2BwYo9c7%2BvNh1C1mwM8Bij3m%2BgnUzvek29mF3HMHYRHbwarfdRR59BvWxyMhKVBtXKD4t4Hzs8bS%2BKevlqqDGlyWWb3lJTE1OgpsDzt9NQhsJdD5Y%2BaYUP7mbSVqxEM29fqJPYEALQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f179d9b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/jquery.bxslider.css?ver=20150401
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/jquery.bxslider.css?ver=20150401
IP
GET /wp-content/themes/skidrowcodex-main/css/jquery.bxslider.css?ver=20150401 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 23:01:36 GMT
etag: W/"5f6754da-1eae"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18002928
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=swmOHyPbv4QqA3qvbYXSoKYXksC1J0FnG%2FgapBHqFTj0crncbvbxL69g9aNHzpNKMKvY5%2BIjU8Pdw7Cfmoq36%2Bnj%2FdXLLHXXBcDSUJmFbjbd%2BtcmBdWE3DekswiV0aZx1%2BSYNmZBTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f179e0b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/fontawesome6/css/all.css?ver=1.0.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/fontawesome6/css/all.css?ver=1.0.0
IP
Analyzer Verdict Alert fortinet Malware
GET /fontawesome6/css/all.css?ver=1.0.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 06 Jun 2022 16:20:50 GMT
cache-control: public, max-age=31536000
expires: Tue, 06 Jun 2023 21:26:24 GMT
etag: W/"629e2962-21abd"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 18008640
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XqmOr7r232pXOysTvYQMVH4UBCeQv3xDzJiKW7vjBjwRiA5IEVHNxEBxQEz4PreAr3Ba0gvqiYDzS7vhzbfYSxkqlfic3LC4W%2BciKJiwpv85VkOrI0vWHpJQAZko9KVz6Us3%2Bd5BWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1aa09b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/countdown-timer/js/webtoolkit.sprintf.js?ver=3.0.7
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/countdown-timer/js/webtoolkit.sprintf.js?ver=3.0.7
IP
GET /wp-content/plugins/countdown-timer/js/webtoolkit.sprintf.js?ver=3.0.7 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 05 Jan 2022 14:58:08 GMT
cache-control: public, max-age=31536000
expires: Wed, 07 Jun 2023 00:33:02 GMT
etag: W/"61d5b200-864"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 17997442
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gHzBmI2hKSRAeNNZFvGD29zvTu5k7AmrgjqsmPln%2FLLuTMDTYH6iZfLFshBmpYqaPTDwH87yF%2F3h4Z2fnirOjCmczqT4XY1LVCI58MY9UvKMTWWah0Uqs0ESchfPOnDw4vs0Ahw3oA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f1ca29b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/slick/slick.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/slick/slick.min.js
IP
GET /assets/www/libs/slick/slick.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"42863-1626872164000"
last-modified: Wed, 21 Jul 2021 12:56:04 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0GSJV7KVve5%2F59Q30RDT2bK8L08tRAw9OiwLjaLK4cwwWqrCgxVZcUTqMu52ULqCQWmGlNbO7SytN01bnGP2CpwmECFdVJcCr8slbQzuLgU%2BcLmcYStGekQAe14ih7i9A71mTYhURu6s8JcH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba4d0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/moment/moment-with-locales.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/moment/moment-with-locales.js
IP
GET /assets/www/libs/moment/moment-with-locales.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=348978
etag: W/"348978-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aoSzlxrKQN%2BwI3YFYanPbC5siC3zYy7hkUGSUp9LPINOqYqBH3O8BLAJMx80MDf%2B3wfihViwZ0Vpf%2FonakHocanDaAzqOBd3%2BcUTBUECymCe1DjxdV0CY59zOUhwREJK%2BMNxhXK4j%2FnfjCfr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ca530b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/woocommerce.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/woocommerce.css?ver=20160930
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/woocommerce.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
cache-control: public, max-age=31536000
expires: Sat, 07 Jan 2023 20:34:09 GMT
etag: W/"5f6754da-79a9"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 30971775
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zo7b3qnSMHFaommiaj%2BUcjHm3uvsJv9HrWezhuZT0kmrCLKSGbAe8LmNGTWEzTH7VTwn6%2Fn3rbOltBPkVeQrk8KBW6CJwjhNAYrY87ZN%2FJwU7zdGWVklcI6UIdprtmLQVUqMwKDbOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f179dbb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/clanwars.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/clanwars.css?ver=20160930
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/clanwars.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
etag: W/"5f6754da-3426"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30972312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PG0bHIUuUumIoNaToIOYDTa5N95brUaq%2BIcL8Ssnr0BmCUYTdcuaYCn5mQIDFWKBlO2gWyVtIMhtD%2F%2FcFd8mCYoWA0aRmGoZhi9s4fKkO0DTF5M9TgaCo4q7UY3jERPap7Ies06xmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f179ddb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/buddypress.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/buddypress.css?ver=20160930
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/skidrowcodex-main/css/buddypress.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
last-modified: Wed, 20 Jul 2022 22:26:07 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000
expires: Thu, 23 Nov 2023 04:58:36 GMT
etag: W/"62d880ff-e393"
x-powered-by: PleskLin
cf-cache-status: HIT
age: 3379819
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a24tFq0Pl9B1kQ7om1S8PWUVwTrB23EnMi8%2BTJ2N%2BJvqUsWrkaTI9441%2F467Sma1EnTsveEO40SZEmF%2Bvc%2BTQAxuUcAbI1iaBGklRsh6cbZtVVVGMM1fIHcS%2FdtDAbwD9FaBmHtU9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f179dcb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/jquery/jquery-3.3.1.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/jquery/jquery-3.3.1.min.js
IP
GET /assets/www/libs/jquery/jquery-3.3.1.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"86927-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6087
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gpJdeo2uEs2A8HzIyoV3x1mVMgmeF6Glm8lxlTg8MVckyixuyDVsmbnBsR5YKVIeKcuxtp653bf4Krlms7xqPZvzcARUwbzsYoI5aqTE6D%2Fjdlh69RsahArnqf0GAZ2375EyRAR97Xfl6Svx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba280b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/plugins/buddypress/bp-members/css/blocks/dynamic-members.min.css?ver=10.6.0
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/plugins/buddypress/bp-members/css/blocks/dynamic-members.min.css?ver=10.6.0
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/buddypress/bp-members/css/blocks/dynamic-members.min.css?ver=10.6.0 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Thu, 03 Nov 2022 19:26:24 GMT
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 19:29:51 GMT
x-powered-by: PleskLin
cf-cache-status: HIT
age: 5055568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vqesy37oXldCRLV0mYG4rj53NUDtdE%2F9hSPr2wY5KdTgF29aexlLnWFKeBXHRTCxkymVRMDAM4X%2BWwuIOahySy1EtOnAULXTUUqMPXTRnjPOVoQ9BIM3Y0Pu51LWuA7Ih%2FgoTSuQug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7829a9f149a7b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/shadowbox.css?ver=20160930
200 OK 0 B URL HTTP/2 www.skidrowcodex.net/wp-content/themes/skidrowcodex-main/css/shadowbox.css?ver=20160930
IP
GET /wp-content/themes/skidrowcodex-main/css/shadowbox.css?ver=20160930 HTTP/1.1
Host: www.skidrowcodex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.skidrowcodex.net/far-cry-6-ultimate-edition-v1-5-0-repack-decepticon/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:24 GMT
content-type: text/css
last-modified: Sun, 20 Sep 2020 13:10:50 GMT
etag: W/"5f6754da-7f9"
x-powered-by: PleskLin
cache-control: max-age=16070400
cf-cache-status: HIT
age: 30972312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UaQARMxWMDGsPcnKWdrjKLaEivGPoNjJzae8TWu%2BiNuHeARjwh%2FAThIYEver8yaxbziOSInXgPWUeG%2F3f%2BSXOLIglq0ecbOhHIQLBACAcB2jdOZvtTqNizdBFyjqBuHr1jAvo4LzHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829a9f169d3b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.pricecomparedeals.com/assets/www/libs/select2/select2.min.js
200 OK 0 B URL HTTP/2 www.pricecomparedeals.com/assets/www/libs/select2/select2.min.js
IP
GET /assets/www/libs/select2/select2.min.js HTTP/1.1
Host: www.pricecomparedeals.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pricecomparedeals.com/no-no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 07:50:29 GMT
content-type: application/javascript;charset=UTF-8
etag: W/"67751-1626872166000"
last-modified: Wed, 21 Jul 2021 12:56:06 GMT
cache-control: max-age=1800
cf-cache-status: HIT
age: 6020
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lgPGAXj5fBAEwXXpE3oWgu331xIal6G5hAiqcDAI6AeFljwaB8V8UXH7Mt5F5isTnGuWbQs%2Bk5rz0wkvLVfhKTQTsfYRaqY2KovRRVHJ0Fo0md31v9qlxRLi%2FM%2BlHK2rmy8kXa31P%2F4yvZMH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7829aa12ba400b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
172.67.217.92
93.184.220.29
188.114.97.1
23.36.76.226
18.156.24.156
104.21.24.71
31.13.72.12