Report - byrutgame.org/4534-skullgirls.html

Report Overview

Visited public
2024-10-17 20:53:56
Tags
URL
byrutgame.org/4534-skullgirls.html
Finishing URL
byrutgame.org/4534-skullgirls.html
IP / ASN
104.21.92.240
#13335 CLOUDFLARENET
Title
Скачать Skullgirls (последняя версия) на ПК торрент

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

112

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
byrutgame.org	unknown	2024-10-12	2024-10-14	2024-10-14	32 kB	2.9 MB	104.21.92.240
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-10-16	5.7 kB	295 kB	104.18.94.41
cdn.akamai.steamstatic.com	8614	2013-11-07	2014-04-02	2024-10-13	521 B	1.6 MB	23.36.77.82
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-10-16	420 B	103 kB	142.250.74.168
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-10-16	490 B	34 kB	104.16.80.73
mc.webvisor.org	17571	2009-08-25	2017-08-16	2024-10-16	405 B	74 kB	87.250.251.119
mc.yandex.com	26236	1998-09-24	2014-03-01	2024-10-13	4.4 kB	6.4 kB	87.250.250.119
ufiler-pro2.ru	unknown	2020-07-10	2020-07-10	2024-10-14	418 B	11 kB	188.42.196.4

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed
2024-10-17	medium	byrutgame.org	Sinkholed

ThreatFox

No alerts detected

JavaScript (60)

	URL	From	Size	First Seen	Last Seen
	challenges.cloudflare.com/turnstile/v0/api.js?compat=recaptcha	ScriptElement	48 kB	2024-10-03	2024-12-21
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js?compat=recaptcha IP 104.18.94.41 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-03 15:09 Last Seen2024-12-21 05:55 Times Seen4667 Hash 5d332fd1ae9feb79a10425dfc3f84fe4 c7d7f9d2bf5ee08e242765803cdd3a223fe1cbfc 2ea786910282df7ae154a0011375cd1254adbd8ef0e75eb62177ada67daf9611 Loading...

	www.googletagmanager.com/gtag/js?id=G-QX7E7T8PJ1	ScriptElement	299 kB	2024-10-17	2024-10-17
Pretty URL www.googletagmanager.com/gtag/js?id=G-QX7E7T8PJ1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash d07970e8477ad7df4015d34320ce265f 6d0e62fc972d0a51de521a3264f1bf7d7113730e d6f6cf5b07b2426f36f7580b294d17cd272ed1844e214cf332f275e421577e3d Loading...

	byrutgame.org/4534-skullgirls.html	ScriptElement	4.7 kB	2024-10-17	2024-10-17
Pretty URL byrutgame.org/4534-skullgirls.html IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 5f8eaba0a2b19deb870f5a7d2f451135 e5e9c9e9385d261c46826557eb3c95a3cf71a0eb 06e756ccbe49b60935b68d48ca7d40ace43098e85ee4ba6a0b63af96ab47a250 Loading...

	byrutgame.org/4534-skullgirls.html	ScriptElement	489 B	2024-10-12	2024-10-17
Pretty URL byrutgame.org/4534-skullgirls.html IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-12 22:57 Last Seen2024-10-17 20:54 Times Seen3 Hash 844fdc0cef10c949981140684983ced3 31c1dca4a3f2c9fe9b2dbcbe446e4c2c7675e726 bbea2ea66c58a245c43a8772a978e56bee9863a79f021874a0fd454fa702eb53 Loading...

	ufiler-pro2.ru/tools/js/appUbarButton.js.php	ScriptElement	11 kB	2023-04-07	2025-05-30
Pretty URL ufiler-pro2.ru/tools/js/appUbarButton.js.php IP 188.42.196.4 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-07 19:58 Last Seen2025-05-30 17:31 Times Seen31 Hash c17b8db269190ea11f1e99708e6470da e2fafa37a4d976d189421517854c03c5980731d2 b6592b53eea560cc2b8792837845abd02514f1da3c377d90db3e5d944de144e9 Loading...

	byrutgame.org/engine/classes/min/index.php?g=general3&v=ap0kc	ScriptElement	88 kB	2024-02-24	2025-04-22
Pretty URL byrutgame.org/engine/classes/min/index.php?g=general3&v=ap0kc IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-24 12:16 Last Seen2025-04-22 05:19 Times Seen71 Hash d812915188ba3640f74c7b72f450384a 8dbe2cc036782ad224a00b14cdaacd13209baea5 ede043e4ec62043bc92859cb1c78d700d8a457b69dc8ae7595e192b89f68a3ca Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8d432d9a18dc56b7&lang=ru	ScriptElement	126 kB	2024-10-17	2024-10-17
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8d432d9a18dc56b7&lang=ru IP 104.18.94.41 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash ee4aa640a393392cc89f246cde862160 35065f1010def443049881848fa1689767c08c86 be0bf086b23ee7fd4a80c923ef97ecdd2192afd3154a64baa2962eea76f7c163 Loading...

	mc.webvisor.org/metrika/tag_ww.js	ScriptElement	213 kB	2024-10-12	2024-10-20
Pretty URL mc.webvisor.org/metrika/tag_ww.js IP 87.250.251.119 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-12 22:57 Last Seen2024-10-20 17:13 Times Seen6 Hash c98c7ac256dadc245cb906b88f539969 19e76fd9352d3012b5c9c4160e7d04091d0f8a95 f6e02defa60ce0aca80f365e8be6b61589aa27e033a32d0acdb142226c0bf007 Loading...

	byrutgame.org/4534-skullgirls.html	ScriptElement	201 B	2023-04-13	2024-12-28
Pretty URL byrutgame.org/4534-skullgirls.html IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-13 14:51 Last Seen2024-12-28 16:48 Times Seen30 Hash 07a8276b29e1b9299dd016fa8c32efde 25e2caa2fc8d05e32f4c67eb1d6fc889d8ec336a 70549591817f9f020404165fea5c95f31c8cc8d69c7e928dae1b0476485742c3 Loading...

	byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/js/libs.js,/templates/byrut/js/fresco.min.js&v=ap0kc	ScriptElement	141 kB	2024-10-09	2024-10-17
Pretty URL byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/js/libs.js,/templates/byrut/js/fresco.min.js&v=ap0kc IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-09 09:03 Last Seen2024-10-17 20:54 Times Seen4 Hash 9d7ed1ae530cb90b9f65090813a48dd4 de0b68050146e4524e36b76abfd653dda362e4b4 d8d208f7a936fa565389060db2fecd6facef36307c881a8f531697e2663be2d4 Loading...

	byrutgame.org/4534-skullgirls.html	ScriptElement	506 B	2023-04-13	2024-10-17
Pretty URL byrutgame.org/4534-skullgirls.html IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-13 14:51 Last Seen2024-10-17 20:54 Times Seen27 Hash b8d4229ba85ef8f6021c001a40cc419f 6d0de20329edc6288594eb66d8decc766eeb7f8b e8f77cc5190581cc8ef3b4c7447738c7892ae5960fcae8e6da2d96377ad2c10e Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/	ScriptElement	4.2 kB	2024-10-17	2024-10-17
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/ IP 104.18.94.41 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash d7dbfa311f01b7bbd52c2e8a4ef5fb0c 2415ad106a6fb46432a8099295e4d905a4cbc190 42fa125e919b1b27d43ccbdcfd3c1f5d91e16952bad2e795703041e2c12e8c7b Loading...

	byrutgame.org/engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,templates/byrut/xsort/assets/libs.js,templates/byrut/custom/assets/libs.js,engine/editor/jscripts/tiny_mce/tinymce.min.js&v=ap0kc	ScriptElement	622 kB	2024-08-03	2024-10-17
Pretty URL byrutgame.org/engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,templates/byrut/xsort/assets/libs.js,templates/byrut/custom/assets/libs.js,engine/editor/jscripts/tiny_mce/tinymce.min.js&v=ap0kc IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-03 22:55 Last Seen2024-10-17 20:54 Times Seen6 Hash d6b511dfce9cff771864dd9340761ac4 935661cbd781af1f3428df825dc93101d534af7a fb3cb0da34168f08ec2a7fdbd38fccc5cd4e4686985c29e9ed5b8feff0ba8286 Loading...

	byrutgame.org/4534-skullgirls.html	ScriptElement	2.2 kB	2023-09-17	2024-10-17
Pretty URL byrutgame.org/4534-skullgirls.html IP 104.21.92.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 09:38 Last Seen2024-10-17 20:54 Times Seen41 Hash 4801978111ffd3cf30d6804ddfa0663d b18c198dab289c70b296a332a2cd255037248299 c42c13f37fbd5eaee1e355ef84ce888b7c399619a4fbcec36675a98f88de54f7 Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-06-05
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-06-05 19:32 Times Seen56507 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

		Size	First Seen	Last Seen
	#1 Eval - 4b7999188ba6565919213ad690afc4ad	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 4b7999188ba6565919213ad690afc4ad da6e5aeb327b70e94428662b0db25b06f9c776a3 d90f4ff2b9cb4629200f77bb510b31ba1eb452b29683d4a3f6107fb8347086c6 Loading...

	#2 Eval - 933a804340c336aeb7b1400f90826157	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 933a804340c336aeb7b1400f90826157 fd053a4579bb417a8f0759ba60bc25cbccef1d02 d03a09231ba59fe626b7c21a81412840b2bac68db75365bd00873d1692f0ea71 Loading...

	#3 Eval - 46403c953d001955917c051b30e722ab	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 46403c953d001955917c051b30e722ab 93be46526c88cb8b4fbf67a41dcab79f595a2592 080c47c9c2991a7c01cf556361f5e5606b76cf2a7720df773ffadc4c5ca5edcf Loading...

	#4 Eval - f36908c760b645a3f3148253c2bf944e	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash f36908c760b645a3f3148253c2bf944e b5df9b5ec7dcf6de5829f609aa9cc43d0c24241b da72a30b5ca737e751a6d2cce7a968f0e131f1bc846cc7fcc83dca000b1ed35a Loading...

	#5 Eval - 2a7c814ca77f621d0df25973f537175e	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 2a7c814ca77f621d0df25973f537175e 8a64a8fb476a9e41537bc0c20281fd0fae0acd4a a6b40a5dcac63e57adaa1ca8211cf4df58c7ef25aec1b854a2cca912a3f78357 Loading...

	#6 Eval - e849d845c47e3d55b999a6b3d9a563c5	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash e849d845c47e3d55b999a6b3d9a563c5 e930cc788693cb721b0eb52ce3d6024cb0852ba7 f81e462200dadf7b78fce5e5bfdf50ed295b4e1766c83cf023c43934306359f8 Loading...

	#7 Eval - 36096d90be8b86724363a0efb39bb86a	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 36096d90be8b86724363a0efb39bb86a 5b406e8084f6d388365f81c46da8ff9761becea1 36f14a274208c39c37d64bcffc7b5479ef520c4e4fa4a38248677f4b24b05e34 Loading...

	#8 Eval - 4fcc149ebcd3db903a3118068fef7c41	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 4fcc149ebcd3db903a3118068fef7c41 5cb351026032738f52862e2d2a5091c9be7d74ba 70eae8f4e7271a58ce6d66f09e4240863a37e9fff0e0c46ac6ef9304faa6d115 Loading...

	#9 Eval - d96021d30f97efeeb246b97952cf4e7d	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash d96021d30f97efeeb246b97952cf4e7d 839b5c39c8831b48f533b475a0ba7c0e6b958abc 87543544e13cf769a078af0561a46a3e0c3bd5341697623307ee5626fd36f49a Loading...

	#10 Eval - 93743e28cb6d8a1f8aa36560e79e5658	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 93743e28cb6d8a1f8aa36560e79e5658 c60e652bde6129fd6fd1a9133049cae117b25f02 81ba44bcf0e2d1f5844bf8d1cd6fffd699f8b2ce36a139f2c1db8bf24d0b9e32 Loading...

	#11 Eval - 176e06ce43e2e174d4b471d6aef174c7	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 176e06ce43e2e174d4b471d6aef174c7 e29f3176b4e55fb76af181e9ccf5593e44d1fe27 a06548a72aedd3bf2b7dbfd8cd8d5ca58d9c00372576ee4eb3631bd86f6eff19 Loading...

	#12 Eval - 718cea18381e1f439e67e2cc033c5800	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 718cea18381e1f439e67e2cc033c5800 f9b1b9a3f8443be55bfb60d673e9c7f8a22a522c e86396757338c2bee706d09e21d0f8973bc89eb5963c9c67afbd72a295efaea0 Loading...

	#13 Eval - 2c6c53cbf6603e7a5c09fd2589b042e5	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 2c6c53cbf6603e7a5c09fd2589b042e5 6e5d66aa53dca7fcc30e9f5c1a7bafdfa3f43a27 53eca9f4579eb22cf7148793bda613896b16359e54c8d54ffe5428ec9abc8914 Loading...

	#14 Eval - c7b7730c391f8f41e93d5453b1effa37	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash c7b7730c391f8f41e93d5453b1effa37 f1a78bf48a57af889278fca3f667bbfbbaf5cf76 79148e7aa32ff66aab3541e4fcccb94a0f7dcfddb5c87de4b0a4b9cf1199af21 Loading...

	#15 Eval - bc9a79495a616860eb49f82764c1c0e6	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash bc9a79495a616860eb49f82764c1c0e6 9cec471d9044513d833c63ded5138d9616123b22 a366bac209b00e4bf2220421693caeaa96ee28208338fa4d990c12780f8e7a77 Loading...

	#16 Eval - 84e8b354e74f5ab57a2d8c95b4a15d65	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 84e8b354e74f5ab57a2d8c95b4a15d65 100ffcc1c32c7c408d2275993f5b6ef4be23800e a33f8a5c15b2568c1cd9537a137749794f179cd28430fe78a635a1115c03f98c Loading...

	#17 Eval - c0308f1f434f21dc546e90de04d4fcf7	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash c0308f1f434f21dc546e90de04d4fcf7 e5f297533df3227939fe65f9ebac207191ff3b27 7d2516694b82b7ed7353896d810c78a8c5c44bf4e1c6153fd96022f6ce4c87c3 Loading...

	#18 Eval - 0eec9ec8efdacef7c30cfe437efdea55	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 0eec9ec8efdacef7c30cfe437efdea55 964c5c817944586573dd4bccafe297381b417cea 7940d02b6e2e69caccf65dba0e1e32ce794a1b3c5e0fd282df5246f7f75305ee Loading...

	#19 Eval - 1ff981053f83311307f7494fa7f44df9	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 1ff981053f83311307f7494fa7f44df9 991eb96003f23b26760abdeadb23974e5bc2d2ed 6ea456d7e61a88620be08f2e94d4c2f081703f91591603706d521ff3a9f7b51f Loading...

	#20 Eval - 9f62d7adcaf897b6a3961b8e2edab46f	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 9f62d7adcaf897b6a3961b8e2edab46f c68f9acf9a0f3014fc2b8094b0b80b7998ce66c4 5915b4bff754010a2ac7e5878f0a438c0e6a56ff70e34f68232726c9bd214439 Loading...

	#21 Eval - ea84edca9b72b87b62c5023aa7c05173	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash ea84edca9b72b87b62c5023aa7c05173 febf0336ef24a7ccd5e7485f1780b9934ca1f577 af69d9fcdab4d94a1fa083eec6245ad9c960d2f285ca686c1ecd1fa7abf13889 Loading...

	#22 Eval - d5c1a598a25c184fcb5be4e40f5e4127	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash d5c1a598a25c184fcb5be4e40f5e4127 d10f0b796c2f2e1b78647fec1113211a1b1365f9 a3b047ab2fd82d8077d074113867827fd97494cc383a8f333eeac391135e6fb8 Loading...

	#23 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07 01:03	2025-06-05 19:44
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-06-05 19:44 Times Seen375322 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#24 Eval - 17b00d6c00f92c287adc03e859c4d39b	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 17b00d6c00f92c287adc03e859c4d39b e2df1f4c987acfc033ad43268332ac51ce37f5c6 93afdb52e5883f73736324cb54503009b10089eaea2c6fbfd034d6c6319d631b Loading...

	#25 Eval - 68d2eab4515697f1ec6e6adf11c1ed6b	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 68d2eab4515697f1ec6e6adf11c1ed6b d5f0b66c4f01303020ade40e67f0452558a4d4ab 587daf1d928e92e3daca161fa57269a9d9e09de52a9173cee82a9f34a9641660 Loading...

	#26 Eval - 4c24f7ff6b740cfdfd3e71cb8f48dc1b	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 4c24f7ff6b740cfdfd3e71cb8f48dc1b 689515690900de4e87c9ac1cbd842d90e47740c2 f0c96ce67741838597b147cac7ff19e7631ec7409cae00bf68cd2441e3788d71 Loading...

	#27 Eval - 03d8d0e3d1bb3a54db9856ba8b4038ff	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 03d8d0e3d1bb3a54db9856ba8b4038ff 1af3725d44a51ec77fde5c886afdc068628f19b8 df2013f82504258e1fb2356e2e9e7f575a1a91d533cd8847d999a8bfff775b52 Loading...

	#28 Eval - a30ebf51b6a473e69651a243f9262ebf	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash a30ebf51b6a473e69651a243f9262ebf c1ab86152d2c61170424b1ddd6bcfa5fce0c7379 b2b9e828c9c17e2aee889e8eb218c6da03003391dc13bf8ee1e6f50991538f7b Loading...

	#29 Eval - a9c03b3b5d307a639409555d2882ac8d	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash a9c03b3b5d307a639409555d2882ac8d bb7894ce6c27a32220ef1ed67153e344692837f0 3720c31f21f3507fad50333e9085166cd5f3e45735d976cb79bd6df8a1f3e1f1 Loading...

	#30 Eval - 90e3b4fd8a9e480b1dba80e548fe39cf	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 90e3b4fd8a9e480b1dba80e548fe39cf 026a856fc2a085c5ea963167a52e469b1f303bf1 b9cee06a063f2d8c0994bb4d265f48dabe2e75a955db77f06e5dfbcb2ac34ee8 Loading...

	#31 Eval - 7e9bd85f9b80d8ce2eb55c51afc1806d	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 7e9bd85f9b80d8ce2eb55c51afc1806d 05aca5e0fac134d60e4c80812678064edbcf5eac 0169b66c5237e9f1844c2802d0c42c064d16f8374c8d25b2390084ce35dccfd6 Loading...

	#32 Eval - 6e9f1cfd77a67cb8a7159c365c791829	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 6e9f1cfd77a67cb8a7159c365c791829 4144da5f8f0f35f15682cf4d8213395d56c5b194 c063f73b5a9714b4b46b7bf6073e82e764eaccc77981c1e759a78c0b55ec95b2 Loading...

	#33 Eval - 40e69d31122bc1f80a1d80732f72afe5	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 40e69d31122bc1f80a1d80732f72afe5 e7e64c9568228622b8eefaaf1c0ee9b9a4aedcea d4a858638e88a472c056935f95a0de074437ce28a5848d5380ee0fd86f7d4461 Loading...

	#34 Eval - fae3124d9d01007e6a0e66aec16481fd	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash fae3124d9d01007e6a0e66aec16481fd d5548a8919d7b9151e9a0551993ddefd94b028a1 7386dd0a693c3c08f2b2bdbc1a4c9b66b49dd226767b98e83b2e39c85311b457 Loading...

	#35 Eval - 6740087861c4c5e2baf22b37e9c8de3f	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 6740087861c4c5e2baf22b37e9c8de3f 24e47f5f0246c368c69326eba5f30829babcd5c3 d09b3c302eff046b111e3890e95f4bd2b1c2742aaf8a006372eb3b4513151869 Loading...

	#36 Eval - 713926df302e4f0c823317399df75de4	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 713926df302e4f0c823317399df75de4 44eee4deb8f05f667d8b4cba48fec601f9a80aa5 cb630bc0e1e425598b0d64f0d5bb9212ceeafaac9bff0586dff0ca2bc13648fd Loading...

	#37 Eval - 7ff9d0628a96b4e5fb9cd69d2988e95e	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 7ff9d0628a96b4e5fb9cd69d2988e95e 0ffae06545aee3bbc8edba0ae797b4f57808a42d 65a5acdca8ae1fd6c30843c42c2013ff7a22f3a4d75d776f94d2b7be93751756 Loading...

	#38 Eval - 8c71f31c0c6cc0af232c21f8739950b8	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 8c71f31c0c6cc0af232c21f8739950b8 870383d63d37e4e3bda205aeeb2d4b7253a32a70 5b0c3362e8cbbdb1e5aa572963f113fe51443e5911028cba6c5335284431d33d Loading...

	#39 Eval - 3863456d882850c1b48f0c498c26ef38	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 3863456d882850c1b48f0c498c26ef38 d87ffecb2d2f577d10b90e7161c724ed2ac63c2b c06af97edc39dd9a91c19607501b0fc192ad2b7a38fed0d9fcdb1236141a5faf Loading...

	#40 Eval - 35d8e97b5519c2ebe00df95709bf3470	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash 35d8e97b5519c2ebe00df95709bf3470 5cdde35bae4797ed75ba87cdc315acfb60dbfd11 2325269fa8b2e8f30da1db01d76d45e7807c9448c5aaef816e19932174035dd5 Loading...

	#41 Eval - e121836d2f8908ecc588e709dc0fb85f	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash e121836d2f8908ecc588e709dc0fb85f 6750e42b6732fc7a569b8a62195e3d52d0fa4062 c942facd5782c9e1de16f8f8817ab88e000a8abfbab7db9fae609a257aea8c12 Loading...

	#42 Eval - 7f825e21c5fc7a3bafebb4c025ca4edd	60 B	2024-10-03 15:09	2024-10-22 09:26
Pretty Observations First Seen2024-10-03 15:09 Last Seen2024-10-22 09:26 Times Seen4757 Hash 7f825e21c5fc7a3bafebb4c025ca4edd 79e8cb7db779c31d4fd8c01565171bc73f736d82 69b137d664bb50d6994854cb7049b54047e9f30e201b1b849ddb0e6359b4888c Loading...

	#43 Eval - ad28e04f77e45b6a1f2afd2ea781df0d	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash ad28e04f77e45b6a1f2afd2ea781df0d 1d24c5916fe94ae93236f2a4054c9718b83ca73f b391b0c52757535f76047fa204c23e620f6834e011dfdbb1b05b22a5d4b2be57 Loading...

	#44 Eval - e225a36f07a7b9fcb62841f409606f74	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash e225a36f07a7b9fcb62841f409606f74 d6b8c6a3f89117f41419efbe7ec064bc6f6ae08d 5e23a945b85b3e97e8dfbe850347cd0d62fabf0cd18754bdfa094ed97f85d9aa Loading...

	#45 Eval - b7ced353b040a45b2f67a3aadb9ac633	28 B	2024-10-17 20:54	2024-10-17 20:54
Pretty Observations First Seen2024-10-17 20:54 Last Seen2024-10-17 20:54 Times Seen1 Hash b7ced353b040a45b2f67a3aadb9ac633 a029d0005631b8a4ea3d8274bc973c2482a76fae fbd6fd441131fc5358f062ed80d85bc094d1ad823f14cd9c4f0455ee725f72d7 Loading...

HTTP Transactions (74)

URL IP Response Size

byrutgame.org/templates/byrut/images/logo.png

104.21.92.240

200 OK

5.1 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/images/logo.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 274 x 60, 8-bit colormap, non-interlaced
Size
5.1 kB (5050 bytes)
Hash
393140752ab9c52a7d15da4e830c8a52
fc14d5c4b79abc39a9f871d05ebbefe51c7c0685
eccbcfd79314410c101e40bdc6b7a0f40e428dc4dc241cbf09d004f5fcf74ce8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/logo.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/png
content-length: 5050
last-modified: Tue, 27 Aug 2024 10:42:54 GMT
etag: "66cdadae-13ba"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W83ZkB0nzt9D5xqsRWmR78XK5RUU8oxbhHyuZNVZVjYnzd9hUcl2COaqijxMQvD9zN%2FCWKrquRU3LTCDQMDzoeHBYbow8vBkdQlpppFBYxnfjxy9vwiskkk7fxRzBJ%2BB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d90ff940b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/engine/classes/min/index.php?g=general3&v=ap0kc

104.21.92.240

200 OK

30 kB

URL GET HTTP/3
byrutgame.org/engine/classes/min/index.php?g=general3&v=ap0kc
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
30 kB (30423 bytes)
Hash
d812915188ba3640f74c7b72f450384a
8dbe2cc036782ad224a00b14cdaacd13209baea5
ede043e4ec62043bc92859cb1c78d700d8a457b69dc8ae7595e192b89f68a3ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /engine/classes/min/index.php?g=general3&v=ap0kc HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 30423
x-powered-by: PHP/8.1.19
expires: Fri, 17 Oct 2025 14:43:55 GMT
vary: Accept-Encoding
last-modified: Mon, 01 Jul 2024 09:10:25 GMT
etag: "pub1719825025;gz"
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 22154
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EbtlurjY8LXyuxtsFa5acXBQiB%2FxVJ03OwkYgX%2BYIy0DoONnIFNxwisRUaYvaLAulQ0vkaNVpp9LFWt3SZYiAMMYTxfweGwtwgaA03U%2FRxZmLXR6J0vTSXxwyeL7HyOW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d90ff9e0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/css/webfonts/all.css,/templates/byrut/css/engine.css,/templates/byrut/css/fresco.css&v=ap0kc

104.21.92.240

200 OK

97 kB

URL GET HTTP/3
byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/css/webfonts/all.css,/templates/byrut/css/engine.css,/templates/byrut/css/fresco.css&v=ap0kc
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
troff or preprocessor input, ASCII text
Size
97 kB (96758 bytes)
Hash
dbde6bb933ce3c13f8f3640d0c7c6436
fc20f9d6d84635e60a740aaab3355bcf5cbfe7f5
7786ccccd92e784a7664a02de7eb0dcf9ee21e2f34bb38ca69c7de9ec40a50a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /engine/classes/min/index.php?f=/templates/byrut/css/webfonts/all.css,/templates/byrut/css/engine.css,/templates/byrut/css/fresco.css&v=ap0kc HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: text/css; charset=utf-8
content-length: 96758
x-powered-by: PHP/8.1.19
expires: Fri, 17 Oct 2025 14:43:55 GMT
vary: Accept-Encoding
last-modified: Sat, 31 Aug 2024 12:34:18 GMT
etag: "pub1725107658;gz"
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 22154
accept-ranges: bytes
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PW0gnp9hEpUEEBeEB2%2F7pFxRrastb1od1hAL7lP04i8XuBOo%2BcPRmnAa4k3%2F2uWBb83xJJqh7XyBS43H9f81UvmTrfXqeFHatsl%2FY7IX%2BIb7k9K7XEjByabGEPnAv%2FMN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d910fb20b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,templates/byrut/xsort/assets/libs.js,templates/byrut/custom/assets/libs.js,engine/editor/jscripts/tiny_mce/tinymce.min.js&v=ap0kc

104.21.92.240

200 OK

201 kB

URL GET HTTP/3
byrutgame.org/engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,templates/byrut/xsort/assets/libs.js,templates/byrut/custom/assets/libs.js,engine/editor/jscripts/tiny_mce/tinymce.min.js&v=ap0kc
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64742)
Size
201 kB (201356 bytes)
Hash
d6b511dfce9cff771864dd9340761ac4
935661cbd781af1f3428df825dc93101d534af7a
fb3cb0da34168f08ec2a7fdbd38fccc5cd4e4686985c29e9ed5b8feff0ba8286

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,templates/byrut/xsort/assets/libs.js,templates/byrut/custom/assets/libs.js,engine/editor/jscripts/tiny_mce/tinymce.min.js&v=ap0kc HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 201356
x-powered-by: PHP/8.1.19
expires: Fri, 17 Oct 2025 14:44:10 GMT
vary: Accept-Encoding
last-modified: Tue, 27 Aug 2024 10:43:31 GMT
etag: "pub1724755411;gz"
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 22086
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JKx%2B%2FZkysvLfPWgwjmJ0UwzLYd%2Bm%2FzfNgxpZy6I4O6K9nBLq7W7UJB6sUUMsDSIuG8MZf%2BfhCP%2Fzdz6PYY9GQRAh913KNNwZ1iSYVS98cBfwLsjBOeSDTWmW9awRkM4a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d90ffa00b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/js/libs.js,/templates/byrut/js/fresco.min.js&v=ap0kc

104.21.92.240

200 OK

39 kB

URL GET HTTP/3
byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/js/libs.js,/templates/byrut/js/fresco.min.js&v=ap0kc
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (31911)
Size
39 kB (38661 bytes)
Hash
9d7ed1ae530cb90b9f65090813a48dd4
de0b68050146e4524e36b76abfd653dda362e4b4
d8d208f7a936fa565389060db2fecd6facef36307c881a8f531697e2663be2d4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /engine/classes/min/index.php?f=/templates/byrut/js/libs.js,/templates/byrut/js/fresco.min.js&v=ap0kc HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 38661
x-powered-by: PHP/8.1.19
expires: Fri, 17 Oct 2025 14:43:55 GMT
vary: Accept-Encoding
last-modified: Mon, 02 Sep 2024 11:46:34 GMT
etag: "pub1725277594;gz"
cache-control: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 22154
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OfRhlzfVSNu9VRfg1Wq7CwKLmKA%2Fa4nmT5Wam7BQYhO%2BbZ3Ev3kDOcelQX%2BLcDYI770hpvPf4HPFLBQF2EDqq4%2FzQAcwnAZsNzdmNqiiMyZDTb1sFRqg0xqhR2CY6efz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d910fb50b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2020-01/1579034520_skullgirls.jpg

104.21.92.240

200 OK

31 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2020-01/1579034520_skullgirls.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 336x473, components 3
Size
31 kB (31252 bytes)
Hash
affc5b15d90687d7954b06de28f46293
2a74f2c1028f937cbb591fae3d2486c26292cc31
0b831cd2ee450a31ea7e3b661338abbadc335e70e5576a412c687d723eb27d44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2020-01/1579034520_skullgirls.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/jpeg
content-length: 31252
last-modified: Thu, 25 Feb 2021 02:32:52 GMT
etag: "60370c54-7a14"
expires: Fri, 18 Oct 2024 06:38:09 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 51316
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDTw2Q0peVLbX2bi4M5lIe6tTIyaqhFa8vVcEO0FMD3grQqLJrScZ1WBzUToVCJ7I9QYW38qsdyNftGnlMTyHcqmchC60um7K0KHagPTb%2Fkn05Dlvyfh4DgUaiyqYRtW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d90ff990b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

challenges.cloudflare.com/turnstile/v0/api.js?compat=recaptcha

104.18.94.41

302 Found

0 B

URL GET HTTP/2
challenges.cloudflare.com/turnstile/v0/api.js?compat=recaptcha
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js?compat=recaptcha HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 17 Oct 2024 20:53:25 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/62ec4f065604/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d432d915a90712e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

byrutgame.org/templates/byrut/images/rating.png

104.21.92.240

200 OK

2.3 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/images/rating.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 88 x 263, 8-bit colormap, non-interlaced
Size
2.3 kB (2293 bytes)
Hash
22063375dd8258d84b95d1ee79e8ded4
d6e75431003741b5c847e8d76a4bbafc24bf3c13
9d0b588363b7ada4fe7d8c7b422fa4e953a49463d0aae20483bd2504b0a7eecf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/rating.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/png
content-length: 2293
last-modified: Tue, 27 Aug 2024 10:42:52 GMT
etag: "66cdadac-8f5"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gd2uFU4daI1vk5BwsTSI3H0%2FABEgS0LfJ7yTTQWTimAMdBpe02Fo9cEc1k7RctOFegM1VoUb58fP5xaPdu4AWN2dos3tTi5TTj9SOLeoUPcB%2BNMyRGOwkW0tT3oB01Us"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b6b0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/images/upd-publ.png

104.21.92.240

200 OK

1.4 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/images/upd-publ.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1414 bytes)
Hash
554a3815f3c1821ac11ff40655ce775d
13d34bc29df63a642f0ea2b1fe867b5a233cbda4
e25dd5f2a89109b540d6c365d5fd87a611c819cbbbfdcf828c4f2e395832a686

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/upd-publ.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/png
content-length: 1414
last-modified: Tue, 27 Aug 2024 10:42:52 GMT
etag: "66cdadac-586"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H0IUhl2Fr2I8IdwG0%2BPODfG3hgUPxkdNYcD5d4TNplycn0Ha3gtzaMeIBykaqJ3GQfXQDBeohgU%2BQ%2FXiSEYZKm%2FX9G7DCr3kl99J9deSHZyhB7ID6uFdUutG1GBLXTj3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b800b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/images/tags.png

104.21.92.240

200 OK

484 B

URL GET HTTP/3
byrutgame.org/templates/byrut/images/tags.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
484 B (484 bytes)
Hash
e25aa5414ea580ee9171f0495dd8614f
0f55896ee1d6c06440326f6d9160799517237763
59172f212518edd429b2e697c77a1e9a91f3769c57dda16798e90aec360b8d97

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/tags.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/png
content-length: 484
last-modified: Tue, 27 Aug 2024 10:42:51 GMT
etag: "66cdadab-1e4"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O2bVe9K6oH10rcmj9koxF0jA9%2FpAABsv7%2FyBFm0Les%2FAF%2B%2FRK5wUAQnkrHnLiqmZ9roxa2n9I9kFt2tFY3FeVHQDy8%2FjQ9SnTaFd%2B8eaAQfzCImUSgW1kKctsKm4VT1M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b750b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/images/updnews.png

104.21.92.240

200 OK

2.3 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/images/updnews.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 64 x 69, 8-bit colormap, non-interlaced
Size
2.3 kB (2304 bytes)
Hash
c5328ae64b721c1e828ddb36a8810404
50ca3d753ce43d6859d90e6cbab2cd6f6e9507a1
a66e1a3d8b6ac9aa6c3cb0f12523e152ec26bdad81521d2d37e836532ae34ddf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/updnews.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/png
content-length: 2304
last-modified: Tue, 27 Aug 2024 10:42:52 GMT
etag: "66cdadac-900"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wDSA%2FsA%2F4lPyLDpRawLwgFUPLD8%2BuPKFoxMIRUmEwKYbxuHHgWInM1H822C%2FhyP47%2B4fH69y99UubrYBUsBEK2Q0Hv0a3WwBbkDDk5%2F396Xp%2BPLa3UIPLI5aY3Vwzj8E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b7d0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/images/top22.png

104.21.92.240

200 OK

1.5 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/images/top22.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1458 bytes)
Hash
79b0227cbaa7268aa28730dacc5d6840
2fec7563de6010c50287768ec0ad4172a279ec1a
c08507e4c48295cae51420335ea81f5890d8f3a569e44076767699a7e9ab7111

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/top22.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/png
content-length: 1458
last-modified: Tue, 27 Aug 2024 10:42:53 GMT
etag: "66cdadad-5b2"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FJQnnMSIhotAq342quWz1Mbd8G4Ks7WKBDQsmXydewvyjIHNYhnekMoqUpF8ZqsCMznrDpH9aKKGVHpquw9uSn8c4kQD6xl2YZJBrL6QhsLH2nt2NAEe%2FzA9tVoz7suu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b850b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/images/fixcom.png

104.21.92.240

200 OK

1.6 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/images/fixcom.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1557 bytes)
Hash
bfe3d1ac9bc7454a75d41c34842f3cc6
012bcc884c14f1ff8c80e69db1df8a5fe46fb987
91dc915b8c3f0bb128584e574cec46350ea75e059c7a6453bd450e8a201e82fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/fixcom.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/png
content-length: 1557
last-modified: Tue, 27 Aug 2024 10:42:51 GMT
etag: "66cdadab-615"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jnyslO6BWdb8kWTCqEfDdKMcB3Ft3yAjowgWijW5zBpGTRLkZdipTiAFfCpQB3pUiwA19%2BE1vIf7mBAJDJU7qdcUZf91NfPHsjbXCwOSuVWkNLFoYScpwuAbH56s%2Be4w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b790b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/latin/400/normal.woff2

104.21.92.240

200 OK

16 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/latin/400/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/latin/400/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 15744
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0DlCM1ycU5R%2BSMrS3AjWjbwrVzXJkDj5oOUw4FrHylY%2B7ewEt0uiwOqfDUQrmX1O%2B32QRJHV1CA4niB9IPJkiPR2qvFi23o1SX8WIslLcjtCUFyx1XmCYOzeZMweCdy6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b870b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/cyrillic/700/normal.woff2

104.21.92.240

200 OK

9.8 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/cyrillic/700/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 9780, version 1.0
Size
9.8 kB (9780 bytes)
Hash
df38e253b41522217f4b0f1fde319032
e1b2cee439f3f364c80340c852f0d7bbb79bbf42
9f226239b7cb86705238ec5a036a05bdb8fa187630f9c686db7c52ad53b64482

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/cyrillic/700/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 9780
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4d8Lj7TRV2pO3pqpqnbm9HOm%2Fb%2BuzjyG1yO2Ba3odaogCi5Go%2F%2FCwh7pFLnik0mrqR5v0T4O99goVwsijmiSxMAlYtokLcG%2Bu%2FY5quXvLfK40jzvbUBFGceTYAnFDSPJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931ba30b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/latin-ext/500/normal.woff2

104.21.92.240

200 OK

12 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/latin-ext/500/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12280, version 1.0
Size
12 kB (12280 bytes)
Hash
f827d88683a8af61a8d3d4d15434aeea
99b60d1f4382d979e4087de7ea2b2522629ee512
3e8f8a1d4f1a37245c6b7acbaa44a6c04975d1e21b038f7128be586482ffe4b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/latin-ext/500/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 12280
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=87y6gp3FoXYChq6DJ%2F80rymlNcmPiS6qXG0zTiy5Qo%2BSr2%2F9PSs2OKyuKrEUwxTmwQy%2FWWgMeKKBevJ4HZbAcQ1fOtbuY0IqtBMNVgu71nDcVl2gmjl1ohL3hKyZ1RLk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931baa0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/latin/500/normal.woff2

104.21.92.240

200 OK

19 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/latin/500/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18588, version 1.0
Size
19 kB (18588 bytes)
Hash
115c2d84727b41da5e9b4394887a8c40
44f495a7f32620e51acca2e78f7e0615cb305781
ae0e442895406e9922237108496c2cd60f4947649a826463e2da9860b5c25dd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/latin/500/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 18588
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kXfOGLlWSPtO2qZIdGw3LDW%2BIGKYliOljO6FHNqYSXPHdco8zO48UaZowjxmmDXfWe7ZvxvFSnQueKYbWddYLr%2Fz4fte9smZKjFC1tx9TobK%2Bw4oE9BgADsdfUZFzdE2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b9a0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/latin/700/normal.woff2

104.21.92.240

200 OK

19 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/latin/700/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18596, version 1.0
Size
19 kB (18596 bytes)
Hash
c83e4437a53d7f849f9d32df3d6b68f3
fabea5ad92ed3e2431659b02e7624df30d0c6bbc
d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/latin/700/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 18596
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n1F14yOgb6%2BlW5MG6%2FxWYJV4y%2FVauqgIQImn%2FBC8z6qU6J3E%2BYrVnEHljz6zK5mYMcH9U8IrpfTKgiVL91BWK51WDY7jxWuGttlnHE5ejuNKL4EsEJM81N8ZUIylH%2BGc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b9f0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/cyrillic/500/normal.woff2

104.21.92.240

200 OK

10 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/cyrillic/500/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 9964, version 1.0
Size
10 kB (9964 bytes)
Hash
48d67106bd6c2a4bb828b08d7a404256
4a4a4323ff7978e45aecdcbffe8a64191492c1ca
ec999ab71cbb6beb7e10406b0d6910c32b5079b7def5722662d2915cf3a54677

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/cyrillic/500/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 9964
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pNjcKz9obfUBqJ6XOfCCmdnDFc%2FOCl9kWuNRwQc1LP6vO5HY9e%2BuSgIWYK%2BXHnU5oFQAo6gpNxJ8xXNXMBQj%2B%2BMtKviN%2BBARuUX2kZZpCZQJVAmCsSd6OAeeZFLt7%2Bkm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931ba60b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/cyrillic/400/normal.woff2

104.21.92.240

200 OK

9.9 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/cyrillic/400/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 9852, version 1.0
Size
9.9 kB (9852 bytes)
Hash
3bc33669e3bedda403e81398b92d9040
7b7fa6c2199234d8905445eba6a8da92676ba8ce
4d539033909dd344ae868f1c72bd0fc3d5ee082c9a76882448849481fd8ed857

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/cyrillic/400/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 9852
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4JscsNz%2B6JdO1fhPVz4yA%2BJDrRNvTs6MAftRjRST6P%2B8rvL6UbsT9FCJhJhTZ3%2FzrXxLlbN6xcy6zLP0hJzwatMoHEaXNJ8zk1TldziFG3X2NR45Qahj1kH2N3En%2BsU8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b930b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/cf-fonts/s/roboto/5.0.11/greek/500/normal.woff2

104.21.92.240

200 OK

7.0 kB

URL GET HTTP/3
byrutgame.org/cf-fonts/s/roboto/5.0.11/greek/500/normal.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7028, version 1.0
Size
7.0 kB (7028 bytes)
Hash
a62d18fce2f2156ad746e2beeeb63fd1
d11bcc3eeb1604df6ef7554fb246a4bbc46cd2b3
13a6a5927667a6c96cab1890afa665e88d7fa3716e8f546ce49991d7402f356d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cf-fonts/s/roboto/5.0.11/greek/500/normal.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: font/woff2
content-length: 7028
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VN%2ByAiGcJcoh0FVhd2W7JMV4lp1Sghb0YpvPXhyB%2FnAL1tT2TT%2FH4mB7CHXd1jA1nc01pwAaJ2YX2WTMKXHvUTBrqUFaYkUWWq07PYFBxxuqsr2%2BtXiRX9XFc6vQgVHs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931bac0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

cdn.akamai.steamstatic.com/steam/apps/256823991/microtrailer.webm

23.36.77.82

206 Partial Content

1.6 MB

URL GET HTTP/1.1
cdn.akamai.steamstatic.com/steam/apps/256823991/microtrailer.webm
IP
23.36.77.82:443
ASN
#20940 Akamai International B.V.

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintF9:98:A0:68:BA:2C:B2:87:C4:C5:77:60:45:46:A1:B6:53:44:20:A2
ValidityThu, 22 Aug 2024 15:07:30 GMT - Wed, 20 Nov 2024 15:07:29 GMT

File type
WebM
Size
1.6 MB (1639598 bytes)
Hash
65262b8649623585bd7d389a662caa2d
16f72e35e5f8ff0ca3474d100e8888cd84df1cd5
db8ca0259b0b908fa1b856d2c21ca78fdbec9d9e4ff1f8c91da8a4cbf34761ef

HTTP Headers

GET /steam/apps/256823991/microtrailer.webm HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 Partial Content
Server: nginx
Content-Type: video/webm
Last-Modified: Sat, 27 Feb 2021 05:29:53 GMT
ETag: "6039d8d1-1904ae"
Accept-Ranges: bytes
Date: Thu, 17 Oct 2024 20:53:25 GMT
Content-Range: bytes 0-1639597/1639598
Content-Length: 1639598
Connection: keep-alive

www.googletagmanager.com/gtag/js?id=G-QX7E7T8PJ1

142.250.74.168

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-QX7E7T8PJ1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint67:C2:D2:52:FF:49:65:5C:79:F7:93:22:F8:32:AB:11:AA:AB:6B:F7
ValidityTue, 24 Sep 2024 02:46:00 GMT - Tue, 17 Dec 2024 02:45:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3835)
Size
102 kB (101970 bytes)
Hash
d07970e8477ad7df4015d34320ce265f
6d0e62fc972d0a51de521a3264f1bf7d7113730e
d6f6cf5b07b2426f36f7580b294d17cd272ed1844e214cf332f275e421577e3d

HTTP Headers

GET /gtag/js?id=G-QX7E7T8PJ1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 17 Oct 2024 20:53:25 GMT
expires: Thu, 17 Oct 2024 20:53:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 101970
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

byrutgame.org/uploads/posts/2024-02/diplomacy-is-not-an-option-6772.jpg

104.21.92.240

200 OK

35 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-02/diplomacy-is-not-an-option-6772.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
35 kB (35082 bytes)
Hash
98022d3244c6dd0e06408b3d9c974815
91d7212812b311dc0b51ac11343f2fd54f6e924c
5eb8ac336f897637af45a40bed0ee865bf535891bc5e94a89b30249deb267125

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-02/diplomacy-is-not-an-option-6772.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 35082
last-modified: Sat, 02 Mar 2024 13:21:55 GMT
etag: "65e327f3-890a"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bcDt3HCpIckEQorZXQZMVr%2ByRuTvs%2B0S7e0aUp5VkdEoRqkxMrqUokaZVN3qB8%2BwUBYWKQWhOBNv7kKbsbYKP3zX7zpMbscw2A5uGOMN8AysvHKryM7cTPNp8aOD7NVQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679680b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-09/bf17ff9480_the-forever-winter.jpg

104.21.92.240

200 OK

32 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-09/bf17ff9480_the-forever-winter.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
32 kB (31641 bytes)
Hash
4f119fac4076ded1329c60eb5e0fce84
b831590622d8923f5a47c6d91b20c0d8e29ef8dc
dade864fc652053f86d48178178e125f1f3b42b5977667f48d825a1f8dc7de6c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-09/bf17ff9480_the-forever-winter.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 31641
last-modified: Tue, 01 Oct 2024 06:43:11 GMT
etag: "66fb99ff-7b99"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uBdbVn0WLWX4DDGHxkmBB4yFJ3UXWrWv8eUvYv%2BuP50ah40XWOpX04N%2Bh7jZRgt6Rwx3GyoT2eF71h3QUxJk6VKO42BzoiRjMf2pZBdv%2BrMslTwrdGKovE6LDMtlyb3k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679690b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-09/6a18725be0_train-sim-world-5.jpg

104.21.92.240

200 OK

32 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-09/6a18725be0_train-sim-world-5.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
32 kB (31514 bytes)
Hash
6e790fd48dc1c61df56526ad01c6afde
93619196c6979ef7476e3b5c209b67920aabef02
a8efc2cc875f5be73ed10df40527b8dbc6fa9e16a1cfc2dfc65b2c62ff5b955e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-09/6a18725be0_train-sim-world-5.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 31514
last-modified: Tue, 01 Oct 2024 06:39:52 GMT
etag: "66fb9938-7b1a"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7MTu0tf%2BLLWG7uBsYyLD6ZSVLwB1pkw8YCN7fVL%2FH2j3GjcEIfpyCANkRNP4TpoCS6C6ZMuDSt%2B880jzvOji%2FpxOOgj5U3iO2fgsDNWegs5I1INwpu%2BCMzN52nDyKHD%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96796f0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-08/c667c2e5b8_star-trucker.jpg

104.21.92.240

200 OK

31 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-08/c667c2e5b8_star-trucker.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
31 kB (30870 bytes)
Hash
6a50e89cc4167f75684cd7580a3ab2b7
9909a489c3ea8f6b71e05793b5d9f23de647ed91
a6de0fcf797289ebacb44cc38ae3caf117ffda19d3998de5666bd5248088e782

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-08/c667c2e5b8_star-trucker.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 30870
last-modified: Sat, 07 Sep 2024 08:42:40 GMT
etag: "66dc1200-7896"
expires: Fri, 18 Oct 2024 15:41:38 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 18708
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uo7Vzf8lxvO1O2AZ9RelirW19tac9PtvoWjy5oVlRSNjgLcCU7CPpNlbgmBQpw3Pt5dMMoLMa9GVPrxb72H6QHbgRhhkFLn5izWs7d%2F8wBWEAnsM9e%2FL3fjgkrY0%2Fahp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679720b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-08/6737710580_sins-of-a-solar-empire-2-1928172.jpg

104.21.92.240

200 OK

25 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-08/6737710580_sins-of-a-solar-empire-2-1928172.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
25 kB (25393 bytes)
Hash
2449f5e0a0c4f1d0a367a80ec9b1a2a6
8041deeb4e4ac87d4e48c3a94d19ded474f3d689
e8a853dfb40038dfc7805c15a0d721b64653105a34afe4bd7e8adc9c10e01dc2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-08/6737710580_sins-of-a-solar-empire-2-1928172.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 25393
last-modified: Sat, 07 Sep 2024 08:40:55 GMT
etag: "66dc1197-6331"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YyYXu4BMfe04OkQfPXqod%2FSprQeVoHlZhrNyRLoM%2FfUbxr7nRaZsfCCnArQNxBo%2FkXCKuknmYM%2Fj%2FsR3zFI3EXHhIuH8etVreQHqL65KEwgfHIBqAlFB%2BkPAXDfhlXFa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679770b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-02/crime-scene-cleaner-8878.jpg

104.21.92.240

200 OK

31 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-02/crime-scene-cleaner-8878.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
31 kB (30674 bytes)
Hash
16a945d4d9656679d369ae10d519395b
a66b77770d5f64d856faef195348ca78d5e0694b
4bf1dfa55b4217fe29dfd564387852d9a0ed945519b7786db5c7712db808b2bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-02/crime-scene-cleaner-8878.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 30674
last-modified: Sat, 02 Mar 2024 13:21:10 GMT
etag: "65e327c6-77d2"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vlav6zyAL3OZ0KD2ynbKboboRUGDyo8tMrjawDvWvueZ2TPKCY7Ic03j6mnigsgBuBA%2BZyyCgLygkepnfRLvH1V0U19JUcKW05OG22Ick8xgJiqI6rpcu04NiHLcvDtb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679790b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2023-06/frostpunk-2-7413.jpg

104.21.92.240

200 OK

21 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2023-06/frostpunk-2-7413.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
21 kB (21208 bytes)
Hash
b16f7f5c46e5120511ab26a2491a17dd
6bb46d928cacb55217970f02c9f90867e703834b
d6d6f5de516a838cb47a38ccbddbf347b7a8381aac4dc85fe79e7932dd53b6de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2023-06/frostpunk-2-7413.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 21208
last-modified: Sun, 02 Jul 2023 04:56:00 GMT
etag: "64a10360-52d8"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N5ZFfm8Gy%2FNtgkWL5G4899WP%2FY99kirIpgKcFA6Wxvr1OaEa1akdceZ8vy8NLqItoiRJY3hpqeVX0xskFDNpomOR13u5VfpLdhF9uHDNicRjUqkQczvTKLmE%2FgE%2Bht4a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96796a0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-06/god-of-war-ragnarok-4640.jpg

104.21.92.240

200 OK

32 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-06/god-of-war-ragnarok-4640.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
32 kB (31798 bytes)
Hash
5a51ca8b6470a629ce83aaddf7e2f443
9de5ffa855aac9eb044d1a1dac4876bba1556195
ef60c0cf22426c5beb5fbda92629c690cd85d66a4c9de939a3b3d8845020b06b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-06/god-of-war-ragnarok-4640.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 31798
last-modified: Mon, 01 Jul 2024 13:11:43 GMT
etag: "6682ab0f-7c36"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QJp2dqEBMQmHboXjgDmJHoU4EQ6VkAenJP94bT09tDi3KpxjwoFz3%2FLi63zQiN03L2dwPCNHLT8dfomOhjuSfDvfbHZ%2FWfKtQCI2TpYRDD0KEG80HVOxmPKB%2BY%2BFRp%2BR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96796c0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-08/45beae94e5_dale-dawson-stationery-supplies.jpg

104.21.92.240

200 OK

18 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-08/45beae94e5_dale-dawson-stationery-supplies.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
18 kB (17649 bytes)
Hash
90ad76e22d03cdcbb59f7201941571e5
713e40c56c69bf163dd99313c8f49e716b4dd521
66a102e2d0b504a1879e14c5dc07f86ff950c0d55a2a247d0f4669bef8bfb285

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-08/45beae94e5_dale-dawson-stationery-supplies.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 17649
last-modified: Sat, 07 Sep 2024 08:41:04 GMT
etag: "66dc11a0-44f1"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mygigWmvfRb4v4%2FeBSj%2FcYeU2rbNY5EhrCa%2BB0XexlcZA0MGj4BCbI2%2FXUqkONHB3wNIIJrdDgT%2F7O%2B7ZAuGwIc99%2FKWwx4FGnYH%2FjHw6Lcx2Ii70IU%2B2UrA3WfpAXbH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679740b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2019-12/1576755680_uboat.jpg

104.21.92.240

200 OK

33 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2019-12/1576755680_uboat.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
33 kB (33300 bytes)
Hash
a79990cff0fec0496c7dcc24b1a04c22
bfeac6ab18aa1cc3e0da3e8b1333e42308661f33
174db06292f7fd7e3a3ea81346986d456d7a7287326c387df0a5ee0f378f0701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2019-12/1576755680_uboat.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 33300
last-modified: Sat, 18 Mar 2023 11:10:56 GMT
etag: "64159c40-8214"
expires: Fri, 18 Oct 2024 17:04:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 13745
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Da2w9og8Qw0IpgE5qH8p5F8fq4VcGKjhoKOzs5uyOH2%2Fqnup%2B%2FPZqDhB6qRPAC4bAJxtDO%2FCMuSEM59Ymr6V5uZuR6Qn2t1c%2FuFhWAxBPg9JXWycwYicuruOkQtjZ44X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96797b0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-06/thank-goodness-youre-here.jpg

104.21.92.240

200 OK

42 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-06/thank-goodness-youre-here.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
42 kB (42293 bytes)
Hash
92ddb20d6accdaae4b07e7dba758258e
11615e8647d7bcda2f577edbe25c6c4e1b909586
d1c84a1e5f6133a4cfecba8cbb5c8aff3c4263abe96e6f5f57c7a262e9e0821a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-06/thank-goodness-youre-here.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 42293
last-modified: Mon, 01 Jul 2024 13:12:34 GMT
etag: "6682ab42-a535"
expires: Fri, 18 Oct 2024 18:56:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 7024
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2JWdYcIpu6LHomrWkgqQDQ7si1U7zf7xxNGARpXqq0QIgkslEiNOPr36mS2hPqr6yu46BxowL06WmKfVSuDOG6OAWdbmyfxAAMVJ0VuOyoukUQts5g3A2iqJ2s1kkkcv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96797c0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-06/riven-4587.jpg

104.21.92.240

200 OK

24 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-06/riven-4587.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
24 kB (23747 bytes)
Hash
d681fc2dba88e1969529238e76867c76
3cce861d9b1f1206ed55cc1231e22721621485c8
46952a9183f387735b928a979a99b5f888ea77bccbc0569b36d4dd8068e000c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-06/riven-4587.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 23747
last-modified: Mon, 01 Jul 2024 13:12:17 GMT
etag: "6682ab31-5cc3"
expires: Fri, 18 Oct 2024 06:07:20 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 53166
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9TfYBSkGz9Gce3JdlznQaessrCn2yV2SlA8inTWV4G0mpwv4OLTdUwAFEojjrZdK0HVC3hj05wfJeTd7EiIupsfbc10m1OzqeGe%2Fx%2BIJxYbRUU9i6P7oAM3suOxib5Yt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96797e0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-06/grocery-store-simulator.jpg

104.21.92.240

200 OK

27 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-06/grocery-store-simulator.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
27 kB (27234 bytes)
Hash
631330bc4043fdaf36ec16426a5789bc
e8e4f16814af53e50027429ad6932e7b5125ec12
d64e33104a56be7e9458b1194b773c1e7e2f2516c7f296d2710b5a2c1c7592fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-06/grocery-store-simulator.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 27234
last-modified: Mon, 01 Jul 2024 13:11:46 GMT
etag: "6682ab12-6a62"
expires: Fri, 18 Oct 2024 17:04:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 13745
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SagnICLSTe4xmmoOaWLJwvS1AbpZuxcsP5kKLvuv24BLlFdo%2Fgm16%2Bcyf%2BZ6qZOwO6O3cjUe8arhKnFXwQFBUg%2FHjNjWu7rM2EjPVbB9GJwM9RZIBqpHAPtqJ%2FTjtjGb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96797f0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-10/5701f29523_a-quiet-place-the-road-ahead.jpg

104.21.92.240

200 OK

46 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-10/5701f29523_a-quiet-place-the-road-ahead.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x450, components 3
Size
46 kB (46230 bytes)
Hash
274e323c3e72d4cfb7d411087413b8e1
393a6c181c66c4f9097ce1c1de11f2f1249ca5a2
503fb99f5977ed0530b86b3573363f5bc502b16b2fc110a4afe93e6647469b64

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-10/5701f29523_a-quiet-place-the-road-ahead.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 46230
last-modified: Sat, 05 Oct 2024 05:39:57 GMT
etag: "6700d12d-b496"
expires: Fri, 18 Oct 2024 12:18:35 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 30891
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=egMzX5ulJbBdlSY6bIbBi2GeeF8VZpHRhB7YQK6smHltj7M%2FOoXRbPWlj08PG2%2BzSNTHe87%2FXbGhvcCiaMlQ4CStyaW8oWpr9KFyO4l6PymOH36j%2Bwxqum8TFP0uX%2FZF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96798c0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2020-04/thumbs/1588071141_1scr-1157475214.jpg

104.21.92.240

200 OK

26 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2020-04/thumbs/1588071141_1scr-1157475214.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 490x276, components 3
Size
26 kB (25962 bytes)
Hash
8cd68aa82ff4e99bcaca75ac16556645
be89d3b70fb7fc76ace1cb47494e3ede1d77d67e
96069e5d42686ad348681c97749116c2a5ea3bb9997d943935092c9639c9cfa1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2020-04/thumbs/1588071141_1scr-1157475214.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 25962
last-modified: Tue, 09 Mar 2021 19:26:12 GMT
etag: "6047cbd4-656a"
expires: Fri, 18 Oct 2024 20:53:26 GMT
cache-control: max-age=345600
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y40GQH90LwmuQe%2BZWbsPbieljU62tSgIbsqAMjGQXjZb47TytmCSzdAk0dLyt2F5tuFbYmxQJnYKQvynkRz2k0RsAvV%2BwDTTwCm2La9j%2Ft9F7esPB%2F2gVO66CsdAdoSW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679800b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2020-04/thumbs/1588071192_3scr-84821018.jpg

104.21.92.240

200 OK

24 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2020-04/thumbs/1588071192_3scr-84821018.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 490x276, components 3
Size
24 kB (24181 bytes)
Hash
28f34131e7fd912f22b06669881778b8
62b8ad9e834239e3c0726e9f1ee631badf583d75
be1d1a49de5f8cc48b52f0873483eff9cdf13d4d732601fd133365df36767013

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2020-04/thumbs/1588071192_3scr-84821018.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 24181
last-modified: Tue, 09 Mar 2021 19:26:13 GMT
etag: "6047cbd5-5e75"
expires: Fri, 18 Oct 2024 20:53:26 GMT
cache-control: max-age=345600
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=huYKOjw1PjlIAxTzoju9rx%2F%2FkiU3mq724a6JP0SiwSOo65VcAHsNUBcXmXnwNRpjWjVSXZB%2BIwEmylKFozB5LGOm%2Flm024QOAnlosq1jkk6JYjd9yCe8IM8Z3lXsaHf5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679830b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2020-04/thumbs/1588071163_4scr-1991454018.jpg

104.21.92.240

200 OK

24 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2020-04/thumbs/1588071163_4scr-1991454018.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 490x276, components 3
Size
24 kB (24447 bytes)
Hash
6a6571264fe4496cd760cc00f7eb9da0
9abf7b1fe70575063125f63e5f373ed3f5cc5836
93654be2b4b2308e8658498532308a6258e4b12354ddc92fd976f0d35a14ad22

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2020-04/thumbs/1588071163_4scr-1991454018.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 24447
last-modified: Tue, 09 Mar 2021 19:26:13 GMT
etag: "6047cbd5-5f7f"
expires: Fri, 18 Oct 2024 20:53:26 GMT
cache-control: max-age=345600
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2KSOthVhkpn2mowr40tVBILZ1ouVreth0BcS0kbbjzOseYMsRG2SDD4JNrGh3E6Y0eIW5MqNup%2Fi9o5XwFCid1TS%2BD%2FTHF1iGMwmuJnONBsNmy%2FlP4wt8kNj4ke0r428"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679840b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2020-04/thumbs/1588071152_5scr-082628577.jpg

104.21.92.240

200 OK

28 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2020-04/thumbs/1588071152_5scr-082628577.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 490x276, components 3
Size
28 kB (28100 bytes)
Hash
e796fcaf12bd85e98c0989bf8f42fd6b
1d23957db03bee8f8fe727a30a7b54c6e35182c9
1152756e43664735ab9797e5a7f2e0b12ce5feee60b5e30fdeeb105d00134523

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2020-04/thumbs/1588071152_5scr-082628577.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 28100
last-modified: Tue, 09 Mar 2021 19:26:12 GMT
etag: "6047cbd4-6dc4"
expires: Fri, 18 Oct 2024 20:53:26 GMT
cache-control: max-age=345600
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZUr7JNLdUeC6RapE6oreAflK5zxYEAEGexDLorUiXMb5UbWnkEcUoHgivT5DOkTcezRYP1hDs0rC%2BTEqXQtuhZzN%2BhJweMk73w3k5oOSsfouW7TRBjCU0ajecFWU4T%2FY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679850b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2020-04/thumbs/1588071139_6scr-736253441.jpg

104.21.92.240

200 OK

26 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2020-04/thumbs/1588071139_6scr-736253441.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 490x276, components 3
Size
26 kB (26066 bytes)
Hash
e294d824a25848110e730b806f84e739
2a5b0ea9678c0b7e718160e49b47d8fb2365e36a
2490f2d632a1e0a2ffa11b95124892a8ac9c453b662ddad8894b0fbecc5de3a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2020-04/thumbs/1588071139_6scr-736253441.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 26066
last-modified: Tue, 09 Mar 2021 19:26:12 GMT
etag: "6047cbd4-65d2"
expires: Fri, 18 Oct 2024 20:53:26 GMT
cache-control: max-age=345600
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wh8CHwvKuo%2Fp8ypp0UXJOZ1nChW198LXcRnX%2BAcc13YinE3aV0VS57eaZ60aZeI90UqrbGJfowCYpa%2Bl8jDFq0g0ZIu88ccjHAfVJqR08ejstugxnw4tRq5ZJm6UBolo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679870b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-10/7e70a1c07c_axon-td-uprising-tower-defense-7820.jpg

104.21.92.240

200 OK

44 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-10/7e70a1c07c_axon-td-uprising-tower-defense-7820.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 300x450, components 3
Size
44 kB (44217 bytes)
Hash
e26d595fec87d743e3841132531f7c8e
559aa8f0b452192ac6effe64b4012787a2350954
1b2985861a41e2080f2761b507932da7afe42675b3a7c23670798254c92f3601

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-10/7e70a1c07c_axon-td-uprising-tower-defense-7820.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 44217
last-modified: Wed, 02 Oct 2024 06:40:54 GMT
etag: "66fceaf6-acb9"
expires: Fri, 18 Oct 2024 18:54:56 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 7110
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hv9884XtgTZHSeBFPSV8JQdHYIze7HgCI4%2B5xEm9wlqWVXJaH2oasMAIlM4Mm3CI9F7PW85bd0iSSXcoX6al3bT4taNY%2FTPkUINJ24d9YAo3LzqVcGW2xJTTRvwUT7%2FY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679960b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

104.16.80.73

200 OK

34 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectcloudflareinsights.com
FingerprintFB:0A:B6:18:33:15:47:A9:D8:B5:ED:D3:1B:EE:13:FF:3F:80:C4:E6
ValidityTue, 03 Sep 2024 08:38:23 GMT - Mon, 02 Dec 2024 08:38:22 GMT

File type
gzip compressed data, from Unix
Size
34 kB (34028 bytes)
Hash
e006330e84cd9ad3fcfb7ad4c07dea1d
be13c59a431cb47c359d1d4dc547ab05e33eb5fb
ae2e1d358f107391cca38c01eee834e1bab380eabf44c7bc88909dafd3c8c584

HTTP Headers

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://byrutgame.org
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d432d931b7e7129-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

byrutgame.org/templates/byrut/images/night.svg

104.21.92.240

200 OK

40 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/images/night.svg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
gzip compressed data, from Unix
Size
40 kB (39846 bytes)
Hash
1fab8579dd3f97758281d1f0e7e76c2c
f81571fa1a1019f4f6a58c4e13201c4196460c66
51a0807cda7384927e185a75411eb618ed498c81cb3bf3284a2fda92e23f8cb7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/images/night.svg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: image/svg+xml
last-modified: Tue, 27 Aug 2024 10:42:51 GMT
etag: W/"66cdadab-3bb"
expires: Fri, 18 Oct 2024 11:52:21 GMT
cache-control: max-age=345600
content-encoding: gzip
cf-cache-status: HIT
age: 32464
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0N9yFjbxqQZ38ELU7LeD8dOxiyWOcn9hQcTB%2FFzWu6Dm8EqEnoyb0VJPDsFMZlV2JvnKS6dHoNWIKq9ObI1opYcGuHShgi4XzSKA06xnZJmM8YdptXNBMUjq3kiTgLcZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d931b680b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-06/age-of-mythology-retold.jpg

104.21.92.240

200 OK

44 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-06/age-of-mythology-retold.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
44 kB (43828 bytes)
Hash
4c3102a2353d4b078eead0564759eb0f
ff23b0feae6bdcfa9cd3f5139374cd14659c7296
844f325267f0f5fe01d6220a3d1d4691068f7df6469bab2fc9f733bba44bbcd9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-06/age-of-mythology-retold.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 43828
last-modified: Mon, 01 Jul 2024 13:11:00 GMT
etag: "6682aae4-ab34"
expires: Fri, 18 Oct 2024 11:52:22 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 32464
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SJa%2FkrEUSRPvf1id12Otc9BR4H5bs9Lv3WJv9iRtsgI83P62lJpBnbXcQCoOx7miBNb%2BPdE0msrzKbKp1v7iFFur%2FiXqRTq1%2ByaY7kSEYAPbmuJsUuRwao1imlAE4qvo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679710b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2020-04/thumbs/1588071117_2scr-664194916.jpg

104.21.92.240

200 OK

21 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2020-04/thumbs/1588071117_2scr-664194916.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 490x276, components 3
Size
21 kB (20866 bytes)
Hash
dd577759d8088cbc2a44dd9bdc50dbd1
1fdcce3bf7d1a339901d088842532a05e671293c
566b78f6634dcfe1b3bb3d15c9ad8853e38a7b8eb652cb78f764eaf01fcbfb3d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2020-04/thumbs/1588071117_2scr-664194916.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 20866
last-modified: Tue, 09 Mar 2021 19:26:12 GMT
etag: "6047cbd4-5182"
expires: Fri, 18 Oct 2024 20:53:26 GMT
cache-control: max-age=345600
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P3uDWKBMw%2B7uwvP8x0DsdbX9sV9ES3Y8qI3JSyZZ2N3kkjm%2BZMQZYdNn1cj3zyoQnwNitoFF94PHUt0RFpOsLOCovrSYxSncyczNBlcXi1w19Afjh1xYKn2elT4iFBlZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679810b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-08/6fb311a436_lollipop-chainsaw-repop.jpg

104.21.92.240

200 OK

47 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-08/6fb311a436_lollipop-chainsaw-repop.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
47 kB (47054 bytes)
Hash
7e63a25c543a239e32e065f1b87dad7b
64f3e11ee4bc14d1cf91f7cb51f1fbb4dc9f2c3e
aa839d70fb11503ca6b78d29598c263364058720dd36e31197da52ef1ff2a000

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-08/6fb311a436_lollipop-chainsaw-repop.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 47054
last-modified: Sat, 07 Sep 2024 08:36:44 GMT
etag: "66dc109c-b7ce"
expires: Fri, 18 Oct 2024 10:23:55 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 37771
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wanZP7APB5fAH%2Fwl0zCbr2lyLfmNzg4EA0Dz3pfwWjU7q7J71k114ibPP%2FL3xMKlgVQIoOigWzTDYGMHnigSU58atxZCmKzOTpY1Glep00t4l%2Fs7toPJszZCG60HCVBR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679940b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/css/webfonts/fa-solid-900.woff2

104.21.92.240

200 OK

328 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/css/webfonts/fa-solid-900.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 328480, version 769.256
Size
328 kB (328480 bytes)
Hash
988a9731afe6bb99003283038799f4d3
e62b834496e8808e09d69b157dd8d30767ab281d
86f3981f7218b89863ef8f6308268144f450b3b4ccc8da51139e01fc791bd685

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/css/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/css/webfonts/all.css,/templates/byrut/css/engine.css,/templates/byrut/css/fresco.css&v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: application/octet-stream
content-length: 328480
last-modified: Tue, 27 Aug 2024 10:43:19 GMT
etag: "66cdadc7-50320"
expires: Fri, 18 Oct 2024 13:02:05 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 28281
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8vPEnExrSCIOCFzR6r6Tdia4E7mk4EHcRqj612p%2Fyyfz118Cu46Pqv0DxeZgb6zoTd48BSjLC4DU%2BOq51AQlmvUW0n6Ga6upRaUu%2FQueKohF3INFW5SRdptzJBaw%2Fqzr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679970b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/css/webfonts/fa-regular-400.woff2

104.21.92.240

200 OK

389 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/css/webfonts/fa-regular-400.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 388876, version 769.256
Size
389 kB (388876 bytes)
Hash
7289c4ce3f03d1e25a23aec2f1ca1989
63bee62a49b1e129dd410a7804c36f600e45e9ef
13ddcd2880dbcccbf67a22e8f8dc4d48a0ec5891553bb99141eb4923528f3901

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/css/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/css/webfonts/all.css,/templates/byrut/css/engine.css,/templates/byrut/css/fresco.css&v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: application/octet-stream
content-length: 388876
last-modified: Tue, 27 Aug 2024 10:43:19 GMT
etag: "66cdadc7-5ef0c"
expires: Fri, 18 Oct 2024 13:02:05 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 28281
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PAl%2FRAbxCSt1H6rBDVeXALrnKGoJ%2Badw7yhaur1z3%2FzCIRgzmTFvS7bVfeDtl5mYOHJ0g3kmIWXZkifJgL3rrID0Hmbkyb3aatMvgyghp3l3JkfA8NzEjxhf1G7Pueyx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679980b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/css/webfonts/fa-light-300.woff2

104.21.92.240

200 OK

424 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/css/webfonts/fa-light-300.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 423780, version 769.256
Size
424 kB (423780 bytes)
Hash
288cd41746be38a75c591812b9f623d5
43e3f3b70a4a803054641c8d946b46978dfcbc23
c3691090231fdc9199d216264abb4ad09aeebe9968fe942fa22fb6881248190c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/css/webfonts/fa-light-300.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/css/webfonts/all.css,/templates/byrut/css/engine.css,/templates/byrut/css/fresco.css&v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: application/octet-stream
content-length: 423780
last-modified: Tue, 27 Aug 2024 10:43:20 GMT
etag: "66cdadc8-67764"
expires: Fri, 18 Oct 2024 13:45:25 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 25681
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Nk40AXlc1Wq8qi2bfYXtrsLK6T8tZxuiHjj5TvKM4jyRRgBWAsIolAFmWxM63qBAhbYdQaR2n2EWSaEBHCMjcloEsVdSvkR1m1edJJe6I8czgN5aiAbvSRocz0rNg%2B7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96799b0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/css/webfonts/fa-brands-400.woff2

104.21.92.240

200 OK

106 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/css/webfonts/fa-brands-400.woff2
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 105796, version 769.256
Size
106 kB (105796 bytes)
Hash
4dea63c16bf81f5c579f8d4f8ba040b5
132096157a1bd06ee90d0e099b30858e55f44a2f
5d878915657ccc71bc447db9d8a48ef33ffaf36b0c5d94aaa784caa779e1c8e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/css/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/engine/classes/min/index.php?f=/templates/byrut/css/webfonts/all.css,/templates/byrut/css/engine.css,/templates/byrut/css/fresco.css&v=ap0kc
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: application/octet-stream
content-length: 105796
last-modified: Tue, 27 Aug 2024 10:43:20 GMT
etag: "66cdadc8-19d44"
expires: Fri, 18 Oct 2024 13:23:29 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 26997
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eLc4f2ZhQSCYD1H%2Fqtbiv9K1t5yY0NxbUzP7s4fBIGfCB5PpA2wADI3RPco8sm60OSB1azDeg%2Btglj5ujzrb6cPAggG0TR%2BdcMScj7r91PFEbxH%2FEbrnTJBys4wRPC3I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96799e0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

challenges.cloudflare.com/turnstile/v0/b/62ec4f065604/api.js

104.18.94.41

200 OK

24 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/b/62ec4f065604/api.js
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
JavaScript source, ASCII text, with very long lines (47459)
Size
24 kB (23879 bytes)
Hash
5d332fd1ae9feb79a10425dfc3f84fe4
c7d7f9d2bf5ee08e242765803cdd3a223fe1cbfc
2ea786910282df7ae154a0011375cd1254adbd8ef0e75eb62177ada67daf9611

HTTP Headers

GET /turnstile/v0/b/62ec4f065604/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://byrutgame.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 01 Oct 2024 14:19:56 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d432d967a3a56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/

104.18.94.41

200 OK

50 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
HTML document, ASCII text, with very long lines (42605)
Size
50 kB (50078 bytes)
Hash
5afca4b5f55cdcc74a2f662d6892a6af
9e672e5736d39f561a79a3cb46d00e900cd2be0e
f11c85b8bd1e8c63eaa7fedbb3d59e775a01ade9bb74af43e73cec084ee74b86

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
document-policy: js-profiling
origin-agent-cluster: ?1
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
server: cloudflare
cf-ray: 8d432d9a18dc56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mc.webvisor.org/metrika/tag_ww.js

87.250.251.119

200 OK

73 kB

URL GET HTTP/2
mc.webvisor.org/metrika/tag_ww.js
IP
87.250.251.119:443
ASN
#13238 YANDEX LLC

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGlobalSign nv-sa
Subjectmc.webvisor.com
Fingerprint0E:34:88:85:15:0E:93:C0:12:EF:3F:45:B6:E8:61:82:0B:EC:4B:BD
ValiditySat, 28 Sep 2024 21:02:48 GMT - Sat, 22 Mar 2025 20:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (547)
Size
73 kB (73165 bytes)
Hash
89be17affcd3a1fe7615752eaea2c021
453f0ff41ff6f4d9e4f106aee48bb73f2d3ef3f1
e218ba9ece84689b180a7d6af81dcc5648544b832e03a2183e54e4cd2ce66f32

HTTP Headers

GET /metrika/tag_ww.js HTTP/1.1
Host: mc.webvisor.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 73165
timing-allow-origin: *
content-type: application/javascript
expires: Thu, 17 Oct 2024 21:53:26 GMT
strict-transport-security: max-age=31536000
content-encoding: br
etag: "6707cb5e-11dcd"
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
date: Thu, 17 Oct 2024 20:53:26 GMT
access-control-allow-origin: *
cache-control: max-age=3600
set-cookie: _yasc=hp4aG5T1l4YHNldMYHh+pYjMghwXIWqvBBMjQ49c9yHnmpVs6TdCnwWJ88V8iy58Om0=; domain=.webvisor.org; path=/; expires=Sun, 15 Oct 2034 20:53:26 GMT; secure
last-modified: Thu, 10 Oct 2024 12:41:02 GMT
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.18.94.41

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:27 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8d432d9bbbf956b7-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8d432d9a18dc56b7&lang=ru

104.18.94.41

200 OK

49 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8d432d9a18dc56b7&lang=ru
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
49 kB (48946 bytes)
Hash
ee4aa640a393392cc89f246cde862160
35065f1010def443049881848fa1689767c08c86
be0bf086b23ee7fd4a80c923ef97ecdd2192afd3154a64baa2962eea76f7c163

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8d432d9a18dc56b7&lang=ru HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 8d432d9bbbfc56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mc.yandex.com/metrika/advert.gif

87.250.250.119

200 OK

43 B

URL GET HTTP/2
mc.yandex.com/metrika/advert.gif
IP
87.250.250.119:443
ASN
#13238 YANDEX LLC

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
FingerprintBC:50:AA:F7:59:35:56:5F:FF:09:D2:3D:F6:97:02:B6:79:22:75:7B
ValidityThu, 23 May 2024 21:01:11 GMT - Sat, 02 Nov 2024 20:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 43
expires: Thu, 17 Oct 2024 21:53:27 GMT
last-modified: Thu, 10 Oct 2024 12:41:02 GMT
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
etag: "6707cb5e-2b"
cache-control: max-age=3600
strict-transport-security: max-age=31536000
date: Thu, 17 Oct 2024 20:53:27 GMT
set-cookie: _yasc=E1H/WqLyZMp7Voe+Wse3XOlWycDtbl6tJz82GDderXmQuyKHgBqmZHsgPuFMsRHrIvIr; domain=.yandex.com; path=/; expires=Sun, 15 Oct 2034 20:53:27 GMT; secure
i=R1nuOQ8gzDGe0c+hE/3EIdcjIGiGyOmxyJ1wxq/XzlTEbLggsoz6En4g8iktmA1oZHL85Hebtfi6h/xzUV6FcT/d0GQ=; Expires=Sat, 17-Oct-2026 20:53:27 GMT; Domain=.yandex.com; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=712450201729198407; Expires=Sat, 17-Oct-2026 20:53:27 GMT; Domain=.yandex.com; Path=/; Secure; SameSite=None
yashr=9832329451729198407; Path=/; Domain=.yandex.com; Expires=Fri, 17 Oct 2025 20:53:27 GMT; SameSite=None; Secure; HttpOnly
timing-allow-origin: *
accept-ranges: bytes
content-type: image/gif
X-Firefox-Spdy: h2

mc.yandex.com/watch/97198497/1?wmode=7&page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205327%3Aet%3A1729198407%3Ac%3A1%3Arn%3A563449394%3Arqn%3A1%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1010%3Awv%3A2%3Ads%3A1%2C24%2C90%2C23%2C130%2C0%2C%2C802%2C25%2C%2C%2C%2C1878%3Aco%3A0%3Acpf%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Arqnl%3A1%3Ast%3A1729198407%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20Skullgirls%20%28%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D1%8F%D1%8F%20%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F%29%20%D0%BD%D0%B0%20%D0%9F%D0%9A%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29cdl%28na%29eco%2842009092%29ti%281%29&redirnss=1

87.250.250.119

200 OK

591 B

URL GET HTTP/2
mc.yandex.com/watch/97198497/1?wmode=7&page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205327%3Aet%3A1729198407%3Ac%3A1%3Arn%3A563449394%3Arqn%3A1%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1010%3Awv%3A2%3Ads%3A1%2C24%2C90%2C23%2C130%2C0%2C%2C802%2C25%2C%2C%2C%2C1878%3Aco%3A0%3Acpf%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Arqnl%3A1%3Ast%3A1729198407%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20Skullgirls%20%28%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D1%8F%D1%8F%20%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F%29%20%D0%BD%D0%B0%20%D0%9F%D0%9A%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29cdl%28na%29eco%2842009092%29ti%281%29&redirnss=1
IP
87.250.250.119:443
ASN
#13238 YANDEX LLC

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
FingerprintBC:50:AA:F7:59:35:56:5F:FF:09:D2:3D:F6:97:02:B6:79:22:75:7B
ValidityThu, 23 May 2024 21:01:11 GMT - Sat, 02 Nov 2024 20:59:59 GMT

File type
JSON text data
Size
591 B (591 bytes)
Hash
e0c5f5431a97f16c4119c1141973c1f5
c4c3ad78cb95f7d92853b5e6725cda26d9588702
3f0b57fe51aab70d1a51862ebef4aa11f7190efb566116b6c3462d2f82501dd8

HTTP Headers

GET /watch/97198497/1?wmode=7&page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205327%3Aet%3A1729198407%3Ac%3A1%3Arn%3A563449394%3Arqn%3A1%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1010%3Awv%3A2%3Ads%3A1%2C24%2C90%2C23%2C130%2C0%2C%2C802%2C25%2C%2C%2C%2C1878%3Aco%3A0%3Acpf%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Arqnl%3A1%3Ast%3A1729198407%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20Skullgirls%20%28%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D1%8F%D1%8F%20%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F%29%20%D0%BD%D0%B0%20%D0%9F%D0%9A%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29cdl%28na%29eco%2842009092%29ti%281%29&redirnss=1 HTTP/1.1
Host: mc.yandex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://byrutgame.org
Referer: https://byrutgame.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 591
content-type: application/json; charset=utf-8
expires: Thu, 17-Oct-2024 20:53:27 GMT
strict-transport-security: max-age=31536000
pragma: no-cache
access-control-allow-origin: https://byrutgame.org
last-modified: Thu, 17-Oct-2024 20:53:27 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-xss-protection: 1; mode=block
date: Thu, 17 Oct 2024 20:53:27 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-content-type-options: nosniff
access-control-allow-credentials: true
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8d432d9a18dc56b7/1729198407428/9646612b7db16e6caf67657fd68af5398cae5c6d06cd8850ce2afad309204237/_Z0U5JIdTayVSJ4

104.18.94.41

401 Unauthorized

1 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8d432d9a18dc56b7/1729198407428/9646612b7db16e6caf67657fd68af5398cae5c6d06cd8850ce2afad309204237/_Z0U5JIdTayVSJ4
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/pat/8d432d9a18dc56b7/1729198407428/9646612b7db16e6caf67657fd68af5398cae5c6d06cd8850ce2afad309204237/_Z0U5JIdTayVSJ4 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 17 Oct 2024 20:53:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20glkZhK32xbmyvZ2V_1or1OYyuXG0GzYhQzir60wkgQjcAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIJZGYSt9sW5sr2dlf9aK9TmMrlxtBs2IUM4q-tMJIEI3ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIJZGYSt9sW5sr2dlf9aK9TmMrlxtBs2IUM4q-tMJIEI3ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAwOXxuf_YfH60WXLdHNNMi668yTzkAIuksAL2v5Hmho3odFuawAT0cyief1oGo8EaTM_mzmbWK1XdowTDWz2k8-mVmWsgyW3NdrIQwZo-pqOoSiMOVVjpDsnwZmGR_SeoYczHldSUjidO3m4djRGeWR4Iv7sZ131HRg8MZGc0BLoTAJ8WLryDVz1Kp_D_qSxsI1b5cap8Y1yGShRIAZ1O6b3zuooeDoLh9q098fsCdlZbnGh28gTNXgdkiFt_yjyaf5upGTHXcizT4TWTDdmvgSNE19n7ahXuj-_GH_XzP42QLUomcuqNEhu5wSj7XNnyRFURH19l6_sLROivytIY2wIDAQAB", max-age=20
server: cloudflare
cf-ray: 8d432da9ce7e56b7-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8d432d9a18dc56b7/1729198407430/HxPULylgMI1wvsF

104.18.94.41

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8d432d9a18dc56b7/1729198407430/HxPULylgMI1wvsF
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
PNG image data, 19 x 46, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
73f826f3e3b62f6a369edeb3d783b470
1ccec67319d66860753cc283bcaa39fb8c6e01be
72bd543ac1d9ceb4f9e29012317c1d4dcc9eccdafb8f1525398994e80e5395c0

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/8d432d9a18dc56b7/1729198407430/HxPULylgMI1wvsF HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:29 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8d432daccc3256b7-OSL
alt-svc: h3=":443"; ma=86400

mc.yandex.com/watch/97198497/1?page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&hittoken=1729198407_547e6eeddc39358e8c0966c6113e6332a4089c0a12a36be8709f4494ba39d8a0&browser-info=nb%3A1%3Acl%3A397%3Aar%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205342%3Aet%3A1729198422%3Ac%3A1%3Arn%3A506243095%3Arqn%3A2%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C2551%2C2551%2C1%2C%3Aco%3A0%3Acpf%3A1%3Aeu%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1729198422&t=gdpr(14)clc(0-0-0)rqnt(2)aw(1)cdl(na)eco(42009092)dss(2)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22ct.e%22%3A%22ns%22%7D%7D

87.250.250.119

200 OK

43 B

URL POST HTTP/2
mc.yandex.com/watch/97198497/1?page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&hittoken=1729198407_547e6eeddc39358e8c0966c6113e6332a4089c0a12a36be8709f4494ba39d8a0&browser-info=nb%3A1%3Acl%3A397%3Aar%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205342%3Aet%3A1729198422%3Ac%3A1%3Arn%3A506243095%3Arqn%3A2%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C2551%2C2551%2C1%2C%3Aco%3A0%3Acpf%3A1%3Aeu%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1729198422&t=gdpr(14)clc(0-0-0)rqnt(2)aw(1)cdl(na)eco(42009092)dss(2)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22ct.e%22%3A%22ns%22%7D%7D
IP
87.250.250.119:443
ASN
#13238 YANDEX LLC

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
FingerprintBC:50:AA:F7:59:35:56:5F:FF:09:D2:3D:F6:97:02:B6:79:22:75:7B
ValidityThu, 23 May 2024 21:01:11 GMT - Sat, 02 Nov 2024 20:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /watch/97198497/1?page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&hittoken=1729198407_547e6eeddc39358e8c0966c6113e6332a4089c0a12a36be8709f4494ba39d8a0&browser-info=nb%3A1%3Acl%3A397%3Aar%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205342%3Aet%3A1729198422%3Ac%3A1%3Arn%3A506243095%3Arqn%3A2%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C2551%2C2551%2C1%2C%3Aco%3A0%3Acpf%3A1%3Aeu%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1729198422&t=gdpr(14)clc(0-0-0)rqnt(2)aw(1)cdl(na)eco(42009092)dss(2)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22ct.e%22%3A%22ns%22%7D%7D HTTP/1.1
Host: mc.yandex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://byrutgame.org
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
content-length: 43
x-xss-protection: 1; mode=block
pragma: no-cache
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
access-control-allow-origin: https://byrutgame.org
last-modified: Thu, 17-Oct-2024 20:53:42 GMT
content-type: image/gif
expires: Thu, 17-Oct-2024 20:53:42 GMT
date: Thu, 17 Oct 2024 20:53:42 GMT
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

byrutgame.org/cdn-cgi/rum?

104.21.92.240

204 No Content

0 B

URL POST HTTP/3
byrutgame.org/cdn-cgi/rum?
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 648
Origin: https://byrutgame.org
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3; _ga_QX7E7T8PJ1=GS1.1.1729198406.1.0.1729198406.0.0.0; _ga=GA1.1.461864433.1729198407; _ym_uid=1729198407987625101; _ym_d=1729198407; _ym_isad=2; _ym_visorc=b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Thu, 17 Oct 2024 20:53:51 GMT
access-control-allow-origin: https://byrutgame.org
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 8d432e3539870b45-OSL
x-frame-options: DENY
x-content-type-options: nosniff
server-timing: cfExtPri

byrutgame.org/engine/ajax/controller.php?mod=adminfunction&id=4534&action=newsread&user_hash=7b88f39081a3e16a48c53eca581f1a510183bb71

104.21.92.240

200 OK

2 B

URL GET HTTP/3
byrutgame.org/engine/ajax/controller.php?mod=adminfunction&id=4534&action=newsread&user_hash=7b88f39081a3e16a48c53eca581f1a510183bb71
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /engine/ajax/controller.php?mod=adminfunction&id=4534&action=newsread&user_hash=7b88f39081a3e16a48c53eca581f1a510183bb71 HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3; _ga_QX7E7T8PJ1=GS1.1.1729198406.1.0.1729198406.0.0.0; _ga=GA1.1.461864433.1729198407; _ym_uid=1729198407987625101; _ym_d=1729198407; _ym_isad=2; _ym_visorc=b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:31 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/8.1.19
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
vary: accept-encoding
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jmf4EUGX4bkFyHie2IS0ozrjrCeJxIgBm7PF5iY%2BUd%2BYi7rrPKGMa33rkeJAhdaEuQpn%2B2sM%2FwsUms1UJciLSinIckwccHNOFy2oWfN9YEPB6D61Mgpdm%2B%2BY3Lg2a%2B5k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432db98cc70b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

ufiler-pro2.ru/tools/js/appUbarButton.js.php

188.42.196.4

200 OK

11 kB

URL GET HTTP/2
ufiler-pro2.ru/tools/js/appUbarButton.js.php
IP
188.42.196.4:443
ASN
#7979 SERVERS-COM

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerLet's Encrypt
Subject*.ufiler-pro2.ru
Fingerprint6B:1E:CB:F4:00:2B:43:64:0B:19:A4:61:A1:E4:46:81:B1:23:F0:0A
ValidityFri, 16 Aug 2024 07:30:21 GMT - Thu, 14 Nov 2024 07:30:20 GMT

File type

Size
11 kB (11015 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tools/js/appUbarButton.js.php HTTP/1.1
Host: ufiler-pro2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: text/javascript;charset=UTF-8
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mc.yandex.com/watch/97198497?wmode=7&page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205327%3Aet%3A1729198407%3Ac%3A1%3Arn%3A563449394%3Arqn%3A1%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1010%3Awv%3A2%3Ads%3A1%2C24%2C90%2C23%2C130%2C0%2C%2C802%2C25%2C%2C%2C%2C1878%3Aco%3A0%3Acpf%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Arqnl%3A1%3Ast%3A1729198407%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20Skullgirls%20(%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D1%8F%D1%8F%20%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F)%20%D0%BD%D0%B0%20%D0%9F%D0%9A%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)cdl(na)eco(42009092)ti(1)

87.250.250.119

302 Found

591 B

URL GET HTTP/2
mc.yandex.com/watch/97198497?wmode=7&page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205327%3Aet%3A1729198407%3Ac%3A1%3Arn%3A563449394%3Arqn%3A1%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1010%3Awv%3A2%3Ads%3A1%2C24%2C90%2C23%2C130%2C0%2C%2C802%2C25%2C%2C%2C%2C1878%3Aco%3A0%3Acpf%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Arqnl%3A1%3Ast%3A1729198407%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20Skullgirls%20(%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D1%8F%D1%8F%20%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F)%20%D0%BD%D0%B0%20%D0%9F%D0%9A%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)cdl(na)eco(42009092)ti(1)
IP
87.250.250.119:443
ASN
#13238 YANDEX LLC

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
FingerprintBC:50:AA:F7:59:35:56:5F:FF:09:D2:3D:F6:97:02:B6:79:22:75:7B
ValidityThu, 23 May 2024 21:01:11 GMT - Sat, 02 Nov 2024 20:59:59 GMT

File type

Size
591 B (591 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch/97198497?wmode=7&page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205327%3Aet%3A1729198407%3Ac%3A1%3Arn%3A563449394%3Arqn%3A1%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1010%3Awv%3A2%3Ads%3A1%2C24%2C90%2C23%2C130%2C0%2C%2C802%2C25%2C%2C%2C%2C1878%3Aco%3A0%3Acpf%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Arqnl%3A1%3Ast%3A1729198407%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20Skullgirls%20(%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D1%8F%D1%8F%20%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F)%20%D0%BD%D0%B0%20%D0%9F%D0%9A%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)cdl(na)eco(42009092)ti(1) HTTP/1.1
Host: mc.yandex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://byrutgame.org/
Origin: https://byrutgame.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
set-cookie: yabs-sid=353550771729198407; Path=/; SameSite=None; Secure
i=ctDCHgcLeojA9ngoXTuNSYioMwLzU9qDGh5/2zOslj8xQo6DIepsB8FZO/gBvn6Uv9dnV1bCcquL5YntwP7yhBgnxHY=; Expires=Sun, 15-Oct-2034 20:53:24 GMT; Domain=.yandex.com; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=642966991729198407; Expires=Sun, 15-Oct-2034 20:53:24 GMT; Domain=.yandex.com; Path=/; Secure; SameSite=None
yuidss=642966991729198407; Expires=Fri, 17-Oct-2025 20:53:27 GMT; Domain=.yandex.com; Path=/; SameSite=None; Secure
ymex=1760734407.yrts.1729198407#1760734407.yrtsi.1729198407; Expires=Fri, 17-Oct-2025 20:53:27 GMT; Domain=.yandex.com; Path=/; SameSite=None; Secure
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: https://byrutgame.org
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
date: Thu, 17 Oct 2024 20:53:27 GMT
location: /watch/97198497/1?wmode=7&page-url=https%3A%2F%2Fbyrutgame.org%2F4534-skullgirls.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A1f7b5m6qwdrmpv8uafn9hcvnpwb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1480%3Acn%3A1%3Adp%3A0%3Als%3A1312075197474%3Ahid%3A327667487%3Az%3A0%3Ai%3A20241017205327%3Aet%3A1729198407%3Ac%3A1%3Arn%3A563449394%3Arqn%3A1%3Au%3A1729198407987625101%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1010%3Awv%3A2%3Ads%3A1%2C24%2C90%2C23%2C130%2C0%2C%2C802%2C25%2C%2C%2C%2C1878%3Aco%3A0%3Acpf%3A1%3Ans%3A1729198404622%3Agi%3AR0ExLjEuNDYxODY0NDMzLjE3MjkxOTg0MDc%3D%3Arqnl%3A1%3Ast%3A1729198407%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20Skullgirls%20%28%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D1%8F%D1%8F%20%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F%29%20%D0%BD%D0%B0%20%D0%9F%D0%9A%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29cdl%28na%29eco%2842009092%29ti%281%29&redirnss=1
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
last-modified: Thu, 17-Oct-2024 20:53:27 GMT
expires: Thu, 17-Oct-2024 20:53:27 GMT
X-Firefox-Spdy: h2

byrutgame.org/favicon-120x120.png

104.21.92.240

200 OK

8.0 kB

URL GET HTTP/3
byrutgame.org/favicon-120x120.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 120 x 120, 8-bit colormap, non-interlaced
Size
8.0 kB (7960 bytes)
Hash
58dab9c132a665c4f525eda08ac2b478
5cb0348bb7c1ab453de686e650116d103c2ded46
b8a881fcaf7e4f0855fd5ee5d398d431ff1fb3fcb2744f556493f29953ad8e5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon-120x120.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3; _ga_QX7E7T8PJ1=GS1.1.1729198406.1.0.1729198406.0.0.0; _ga=GA1.1.461864433.1729198407
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/png
content-length: 7960
last-modified: Sun, 14 Jan 2024 16:18:21 GMT
etag: "65a4094d-1f18"
expires: Fri, 18 Oct 2024 12:58:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 28505
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2XmZVFDDmY%2FMh%2FpMxV%2F8uMr7uSbo6Cjp74p2vu1bU1Xs7a48wTd7yCMNX5qFg%2FpGbgsZq9qWoab5jMmD2vTvnE9Y%2Bvk1cZCTxSggSW11p1kV3Is0%2ByunQAe%2FRxLBwvrT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9b19f80b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/721405204:1729197303:9Y2sO4jvehcG5Ognx7QLJ-EpOK1sGBLOYTZr_nLRAlc/8d432d9a18dc56b7/77cf3904da3145d

104.18.94.41

200 OK

139 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/721405204:1729197303:9Y2sO4jvehcG5Ognx7QLJ-EpOK1sGBLOYTZr_nLRAlc/8d432d9a18dc56b7/77cf3904da3145d
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
139 kB (138912 bytes)
Hash
dfe5631df32db523c8447d0bade41807
1e9acd7f5fe8f512e6894e8c77b12a2d562b96e6
0c0b6ce55218f964fefcb55dfd0a524b899aadac74aa6f1359e66f4f5e6a334a

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/721405204:1729197303:9Y2sO4jvehcG5Ognx7QLJ-EpOK1sGBLOYTZr_nLRAlc/8d432d9a18dc56b7/77cf3904da3145d HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 77cf3904da3145d
Content-Length: 2696
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:27 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: MEbhx8DX3yhHBgDkKF46Gli3BSQZspsIPozKh6rDQXIccvklRnE4uYU192CmgiWf/rrxjK8xHL4y35nHBXC9RfimLa//h06JN1uOafAvy81e6Wuh5B3iWmZq+v9x0BevAVpHO+wIbwl5/6OOabqXQQdo2raTLyjUAhST5cP0N6fR7PUsAe0nj5vs5YMbVHXTGJHrWcb13IyqBF1TK2Zh48iB/UplqmR9MhZVJT3OpqstdWh9WPLH29kpGIpD1/vdd0unsOaATMMzSci8lkcgYKUtELW97zj+1sowcGaxeN2S5GWdNPWuKprbuZSmkgwH8saORfyArrcNJzdfDNpVm7S23ipC9hCBcl94Ww++rUEXEqaPr47NM9wOtZ2T5OLco7TM+3MalfIdQShwh+ISGUh/AyzcJp4M00Sn1HkOElN0SQoRoRT6NyNWPDFmn+vaCC5UKSPmSl42gTzLKg==$DnNocQvjfZ9Xxg5b
server: cloudflare
cf-ray: 8d432d9e48bf56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

byrutgame.org/favicon-120x120.png

104.21.92.240

200 OK

8.0 kB

URL GET HTTP/3
byrutgame.org/favicon-120x120.png
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
PNG image data, 120 x 120, 8-bit colormap, non-interlaced
Size
8.0 kB (7960 bytes)
Hash
58dab9c132a665c4f525eda08ac2b478
5cb0348bb7c1ab453de686e650116d103c2ded46
b8a881fcaf7e4f0855fd5ee5d398d431ff1fb3fcb2744f556493f29953ad8e5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon-120x120.png HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3; _ga_QX7E7T8PJ1=GS1.1.1729198406.1.0.1729198406.0.0.0; _ga=GA1.1.461864433.1729198407
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/png
content-length: 7960
last-modified: Sun, 14 Jan 2024 16:18:21 GMT
etag: "65a4094d-1f18"
expires: Fri, 18 Oct 2024 12:58:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 28505
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FhPfBtAc82vrDjlLV91pTn3FTAf2LDVgbUxxqJedKd64I598oijK%2Fy1JU8etn5ja09KbCK6GPmCopPbCAqN%2FZdYv388XCV7%2F2zB4K9A36QPkMRKteXweLuXQ9GfzeOim"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9b19f20b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/templates/byrut/css/styles.css?v=ap0kc

104.21.92.240

200 OK

103 kB

URL GET HTTP/3
byrutgame.org/templates/byrut/css/styles.css?v=ap0kc
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type

Size
103 kB (102717 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/byrut/css/styles.css?v=ap0kc HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:25 GMT
content-type: text/css
last-modified: Mon, 02 Sep 2024 12:59:52 GMT
etag: W/"66d5b6c8-1913d"
expires: Fri, 18 Oct 2024 14:44:11 GMT
cache-control: max-age=345600
content-encoding: gzip
cf-cache-status: HIT
age: 22154
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t8oqRd6%2BLGw5otvjhlHrA7l9ANAHrFRNNj31iuXIcMhn0HjZqblCmuZy6RqVTGwCMpKKTIGNrNIqPSZygreWSCqv4x2kVnQEtRckNndU4m5SFU3KtiSMCeXG94D9Bndk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d90ff8e0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/721405204:1729197303:9Y2sO4jvehcG5Ognx7QLJ-EpOK1sGBLOYTZr_nLRAlc/8d432d9a18dc56b7/77cf3904da3145d

104.18.94.41

200 OK

27 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/721405204:1729197303:9Y2sO4jvehcG5Ognx7QLJ-EpOK1sGBLOYTZr_nLRAlc/8d432d9a18dc56b7/77cf3904da3145d
IP
104.18.94.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint65:75:A9:DF:EC:98:9B:14:E5:F1:43:E6:B9:E2:E3:9C:50:C4:E8:A4
ValidityThu, 05 Sep 2024 16:26:55 GMT - Wed, 04 Dec 2024 17:26:54 GMT

File type
ASCII text, with very long lines (26816), with no line terminators
Size
27 kB (26816 bytes)
Hash
0a3183171ab233f29a69390ca7520e0c
82ea56916e48b88c12e8881094d8a4d4d7b51d7a
4800b6236a979b799274fef58d75cc83ffdb80553750814cf7ad82487a71feab

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/721405204:1729197303:9Y2sO4jvehcG5Ognx7QLJ-EpOK1sGBLOYTZr_nLRAlc/8d432d9a18dc56b7/77cf3904da3145d HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/271or/0x4AAAAAAAIAdvL2AkEvutnv/light/fbE/normal/ru/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 77cf3904da3145d
Content-Length: 27793
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:30 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: oUDWTPbK12ttP9e6JDbldKE2WwA9V2WQmEz7xYzQFISMosuGHYdsM9uA6QP30klMm8nVHW30jee3o2/s$eU4YoxVU99uJ4VTi
server: cloudflare
cf-ray: 8d432dae3ebb56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

byrutgame.org/4534-skullgirls.html

104.21.92.240

200 OK

174 kB

URL User Request GET HTTP/2
byrutgame.org/4534-skullgirls.html
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type

Size
174 kB (174414 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /4534-skullgirls.html HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 17 Oct 2024 20:53:24 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/8.1.19
set-cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3; path=/; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
vary: accept-encoding
server-timing: cfCacheStatus;desc="DYNAMIC"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rqFAfGmV6ryxMg7hqHPLRNA8AZQRwZVHbYvH9vzOgeiyQrdeoD0ZAyufXprjEW7fJ%2BB1J%2BfaKseCqSHHnrPiSOI9Iu%2BJlzugVa9PNbVmiUHJWXuY6G%2BI%2BR0Ck9goF6BS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d8de824568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

byrutgame.org/uploads/posts/2024-02/speedrunners-3109.jpg

104.21.92.240

200 OK

27 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-02/speedrunners-3109.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
27 kB (27150 bytes)
Hash
d9d8328031b9e81c41e26bca9d4474b3
6f1cf88fa5ae1fcf67baae1e0e1a08d9db494e0c
da1eff15dbe3f2072db1f575e3440b124bca605d16900c33fe03b787d617013d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-02/speedrunners-3109.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 27150
last-modified: Sat, 02 Mar 2024 13:32:54 GMT
etag: "65e32a86-6a0e"
expires: Fri, 18 Oct 2024 13:09:21 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 27845
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3c%2FJVF2Gg4EnR3kSQ5hg6mWAHcFaVTp%2Fo8LWgjmiSY80eg%2FYzHobrFp0zLG589GSJ4zAvwKmDnGw5Rv0RaJGGxqiC1xrHbJgeoPhCBP%2F%2F0dcgVroD7HDYqwJM3lmVW6v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d96798e0b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

byrutgame.org/uploads/posts/2024-02/astral-ascent-1880.jpg

104.21.92.240

200 OK

39 kB

URL GET HTTP/3
byrutgame.org/uploads/posts/2024-02/astral-ascent-1880.jpg
IP
104.21.92.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://byrutgame.org/4534-skullgirls.html
Certificate
IssuerGoogle Trust Services
Subjectbyrutgame.org
Fingerprint0C:AA:8E:24:F9:DE:E7:E1:0E:97:07:2E:88:A6:BA:22:7B:C1:9A:E0
ValiditySat, 12 Oct 2024 08:10:56 GMT - Fri, 10 Jan 2025 08:10:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x450, components 3
Size
39 kB (39370 bytes)
Hash
ca3e07aebbe636841e58f292e6c738c1
6e9d19b3aeff348c587dd94afde8a7d3f29d999e
f1db19570a05134abbf449cbedd15ddc061abeb5ff06f64eccb9458d248cb440

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/posts/2024-02/astral-ascent-1880.jpg HTTP/1.1
Host: byrutgame.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://byrutgame.org/4534-skullgirls.html
Cookie: PHPSESSID=f11bb477de58de915cfd977f84adfeb3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Oct 2024 20:53:26 GMT
content-type: image/jpeg
content-length: 39370
last-modified: Sat, 02 Mar 2024 13:19:20 GMT
etag: "65e32758-99ca"
expires: Fri, 18 Oct 2024 17:04:25 GMT
cache-control: max-age=345600
cf-cache-status: HIT
age: 13741
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t0uUmBPFQvxqLazc9XTIgjuyI8mOjW0WXxfz1k%2BZ58ygH8%2BrrooqeyhRlXlKpPH2r4pQmBNcekAsHNdgex7pvHTOuLR4TGeV0hWAE1dgVan8nlSFt1hm03vZjhmG4d7t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8d432d9679910b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

JavaScript (60)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by