Analysis
-
max time kernel
120s -
max time network
138s -
platform
windows7_x64 -
resource
win7-20240220-en -
resource tags
-
submitted
29/05/2024, 07:32 UTC
General
-
Target
7ff1d8f46adb502a61f55d014764f8b7_JaffaCakes118.html
-
Size
36KB
-
MD5
7ff1d8f46adb502a61f55d014764f8b7
-
SHA1
3842a4067cda0eb0fcc1ec83881e5cf34a64f822
-
SHA256
8bbe84ff4085846c938023407931be5ff8f6c68afb5b7b43038d80463f3460a0
-
SHA512
7b18ef8ef6c2538467e888ff9aa05ebf8ec52a93410abfb9b54e019166c2f7280672dc33ce3c2b218401d48486f820cc5729a7aeb102f1b562ae63bffffe2de7
-
SSDEEP
768:zwx/MDTHZLZD88hARGZPXFE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6Tsdi6f9U56lLI:Q/bbJxNVpufS6/s8WK
Score
1/10
Malware Config
Signatures
-
Modifies Internet Explorer settings 1 TTPs 36 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
-
Suspicious use of SetWindowsHookEx 6 IoCs
-
Suspicious use of WriteProcessMemory 4 IoCs
Processes
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7ff1d8f46adb502a61f55d014764f8b7_JaffaCakes118.html1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1976 CREDAT:275457 /prefetch:22⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
-
Network
-
DNScoinhive.comRemote address:8.8.8.8:53Requestcoinhive.comIN AResponsecoinhive.comIN A172.67.165.117coinhive.comIN A104.21.57.186 -
DNSwww.gravatar.comRemote address:8.8.8.8:53Requestwww.gravatar.comIN AResponsewww.gravatar.comIN A192.0.73.2
-
DNSsaltworld.netRemote address:8.8.8.8:53Requestsaltworld.netIN AResponsesaltworld.netIN A104.21.11.155saltworld.netIN A172.67.166.97
-
GEThttp://saltworld.net/forums/public/style_images/master/f_icon_read.pngRemote address:104.21.11.155:80RequestGET /forums/public/style_images/master/f_icon_read.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:20 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/public/style_images/master/f_icon_read.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WuoW2jLqXzgwuNLFb9rKDQPTamxDFMYx62%2FRWhCUNg14%2BmEIWF3u6Hb0jj9Q1s5nKsa%2BaIgm9giyJsuZFybGtSxAADMdL9G4Njo74bGqefW7zGx1HTD227j4A2M%2Fk1BT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca3c39b84883-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/public/style_images/master/useropts_arrow.pngRemote address:104.21.11.155:80RequestGET /forums/public/style_images/master/useropts_arrow.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:19 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/public/style_images/master/useropts_arrow.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pynmNKV3aaWKq1KN4f1vm%2FasucM8%2BN%2FFZ642O92wBqwj%2BGkvmGniPvY0DOPwYErBePUoRsBo90lg3V%2BW%2B9LviZu7Xm6nTa7gTsyn9g2vqwJDr2RczXFIiWwCiFtLkfSb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca3609d04189-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.cssRemote address:104.21.11.155:80RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:19 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.css
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sgHWUo8Eko30A4V5GdjbT3JXXR38gpJ6BtpRf%2Bw1knCqH3ix7J2yBXCtK8ASBLSBH305UgJwSQKGsMTjV0ZMu8V3S9QfeHaKDdz60Z189wstW4D%2Frs5danBIAYuPbmik"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca369a774189-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=jsRemote address:104.21.11.155:80RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:19 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=js
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2z%2FNPI0QK1%2BIT7PuSPQ5drcMG3b9wBktFY6ZK0MlXNf6LoZcvX7D%2FhdTyziOOLYz6XUnwvbFx0ci409TJjW%2BvMBUck4%2B0uDiso1YJvCE8yamUYdIE0MafGFSmFsLomRs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88b4ca371b014189-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jsRemote address:104.21.11.155:80RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:19 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.js
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gXbfsJem7fXyJ3BKeZjlPREk8Tn1T2f8yJ3Lf9sNUQe3jsglQ%2Frp5pnqH1vJ8zDHJu0iu%2BkhATxr%2Bi2Uzh3w9NH9A7MsSZjiA5OfW48Bg1vMqFXrDRqBDo9iZ6hgOaDq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca37cbd14189-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/uploads/profile/photo-44563.gif?_r=1448768805Remote address:104.21.11.155:80RequestGET /forums/uploads/profile/photo-44563.gif?_r=1448768805 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:24 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/uploads/profile/photo-44563.gif?_r=1448768805
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gPxKLYCYxBZGIXfYhPXSplHTLS%2F2HlmZIzzpr4AmrhsrJI9iLeO6%2FOYbm3kPcNG00Iph4OVPD4ZjbEBDM%2FoXzEkj1KrejYgvmrpYYkaETY6m2G5X5HhoOZbzasL34WLV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca547b294189-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://www.gravatar.com/avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngRemote address:192.0.73.2:80RequestGET /avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.gravatar.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 29 May 2024 07:32:20 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.gravatar.com/avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png
-
GEThttp://www.gravatar.com/avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngRemote address:192.0.73.2:80RequestGET /avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.gravatar.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 29 May 2024 07:32:19 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.gravatar.com/avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png
-
GEThttp://www.gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngRemote address:192.0.73.2:80RequestGET /avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.gravatar.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 29 May 2024 07:32:29 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png
-
GEThttps://www.gravatar.com/avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngRemote address:192.0.73.2:443RequestGET /avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.gravatar.com
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Server: nginx
Date: Wed, 29 May 2024 07:32:34 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 11 Jan 1984 08:00:00 GMT
Link: <https://gravatar.com/avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png>; rel="canonical"
X-Redirect-By: WordPress
Location: http://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.png
Expires: Wed, 29 May 2024 07:37:34 GMT
Cache-Control: max-age=300
X-nc: HIT lhr 4
Alt-Svc: h3=":443"; ma=86400
-
GEThttps://www.gravatar.com/avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngRemote address:192.0.73.2:443RequestGET /avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.gravatar.com
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Server: nginx
Date: Wed, 29 May 2024 07:32:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 11 Jan 1984 08:00:00 GMT
Link: <https://gravatar.com/avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png>; rel="canonical"
X-Redirect-By: WordPress
Location: http://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.png
Expires: Wed, 29 May 2024 07:37:35 GMT
Cache-Control: max-age=300
X-nc: HIT lhr 4
Alt-Svc: h3=":443"; ma=86400
-
GEThttps://www.gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngRemote address:192.0.73.2:443RequestGET /avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.gravatar.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 May 2024 07:32:35 GMT
Content-Type: image/png
Content-Length: 22655
Connection: keep-alive
Last-Modified: Tue, 22 Sep 2020 02:57:25 GMT
Link: <https://gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.png>; rel="canonical"
Content-Disposition: inline; filename="6ab9cf9740f754d0565ec0f4b1250e8e.png"
Access-Control-Allow-Origin: *
Expires: Wed, 29 May 2024 07:37:35 GMT
Cache-Control: max-age=300
X-nc: HIT lhr 4
Alt-Svc: h3=":443"; ma=86400
Accept-Ranges: bytes
-
GEThttps://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=jsRemote address:104.21.11.155:443RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=js
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HnHrQXi68pPkjGyZBcKbOQc9JKzbH8si3CAvqpFFNG28KWFjU%2F4tdJougUpXUoT9U%2BMjF8MKZJqsciV6a70XfylvcaMCpkNI%2BAgf2TAIBfdXw2%2B3a1WE8%2BS60V%2F41oII"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88b4ca69ee1d496e-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://saltworld.net/forums/public/style_images/master/feed.pngRemote address:104.21.11.155:443RequestGET /forums/public/style_images/master/feed.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/public/style_images/master/feed.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fmtycGY4ArtFXnC1YSiTOv%2FKXySdYhAYa%2B7TB61M0Z8OXF2f3eRlCxTcZPgEd7orsD8yZC1wkmv4sGyEb5xtKlDMRh%2F9UKOnJX%2BoRRMnAfO0BBV4D4kd%2FqWkb7gR%2B07U"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca6c6856496e-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/public/style_images/master/top.pngRemote address:104.21.11.155:80RequestGET /forums/public/style_images/master/top.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:21 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/public/style_images/master/top.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mwBjzHGthPwu9DGGK2Lk3uXBWmCSylhZCoQS1l%2F%2FWPuE222Q82%2Ff%2BPL97KJbbpxvI3RqTJtcxiBGIAUy%2FXOYfaZzgvcnSRZkIY%2FaBXJEZs53IX7h2%2BGQjLEuEbt6BkFV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca440b8e9479-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/public/style_images/master/feed.pngRemote address:104.21.11.155:80RequestGET /forums/public/style_images/master/feed.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:27 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/public/style_images/master/feed.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QV%2Be7C8oq%2Fi4zLxwW%2BxBT8wZOjAvMTQz785OMAH1vErnvw4IQ390FjZeawu7%2FlYk10a45TKTbBBhVzveGE6oIrAoz%2BRswwCUJIRjvUzORxxSSbtqpYc1WhH8P0gP%2F0QX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca697c506400-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://saltworld.net/forums/public/style_images/master/f_icon_read.pngRemote address:104.21.11.155:443RequestGET /forums/public/style_images/master/f_icon_read.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/public/style_images/master/f_icon_read.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ntUx6AsNtPSR7eAfjyVyp8sk2p6MvXGCcS%2FYP6a1J15aqE5j7fFEni7YMBJqvIcSHzQSk%2FUh3pVbVsc%2FnMyFLYFWLaPdXpJ%2BFKBxOGyKc6g%2B8fXXP3YP5vHEl0wCRL%2Bu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca721c85642b-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://saltworld.net/forums/public/style_images/master/useropts_arrow.pngRemote address:104.21.11.155:443RequestGET /forums/public/style_images/master/useropts_arrow.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/public/style_images/master/useropts_arrow.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jexanGTACLSUrE5bSnWoKxRVlg9qhOc5N%2FwCGXKYLp4AjHoXfKbyBZkRLgy23sOxwmOp9Aq0QG%2Bnuwhjt1w%2BCndQyhMLs7rZTAVYUY0cgQjBDd%2Ff7myRIX2hGOQBSQHa"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca5df9d27741-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://saltworld.net/forums/public/style_images/master/top.pngRemote address:104.21.11.155:443RequestGET /forums/public/style_images/master/top.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/public/style_images/master/top.png
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B6ntyGSYvA%2BPaok7VDA1EaOVoqBuVwIv1vDun1OCuJBygbor5VSpRbyOVN3N0USwVIn4w4xz01fLv3b5gCY0ZF81gqRYGHUOpoR%2BBtOIxl0u6fB%2BjelszVnZVFpiROnN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca696eb46379-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://saltworld.net/forums/uploads/profile/photo-44563.gif?_r=1448768805Remote address:104.21.11.155:443RequestGET /forums/uploads/profile/photo-44563.gif?_r=1448768805 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/uploads/profile/photo-44563.gif?_r=1448768805
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ma1LFmhNl9qloXdNP2GAz%2BSy7qcwofBNLOZFYaMoW5rO1%2FZwLIlXHei02VZdrpdfpClrV%2FefpcqKIuhAv49lQcfE76%2FBJBDzpIwHjtJ1VDPYAen8%2FPpWeRIY3L0yr5B4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca721c1f7702-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.cssRemote address:104.21.11.155:443RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.css
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iT9Mmmwe0wxUvwPchvE86QKHn%2B3WVqiStV1qtwb3dGFlV2YJt4Igl07IJyfV9mTCcKUPb0qX3mUQP2KVXINPzmvwQ0Z6TZE3AzkaJOn4P6bFUbotzUsjDT7PnseWAkbA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca880eda7702-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://saltworld.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0Remote address:104.21.11.155:443RequestGET /forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aOify%2BMaiqozUGeqZheiWnr0RmCeAJJLL6rRGzV1cM2TLczmtrypI3pHGYzXXOOgcOKEZ5MjQ%2F9k2QZ0cF3VI6YIlpRsktzWApW8OiAVA0sIrnwyBB7ouvNaM%2BD725BJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88b4cac489ca7702-LHR
alt-svc: h3=":443"; ma=86400
-
DNSgamingw.netRemote address:8.8.8.8:53Requestgamingw.netIN AResponsegamingw.netIN A104.21.65.85gamingw.netIN A172.67.160.162
-
DNSgamingw.netRemote address:8.8.8.8:53Requestgamingw.netIN A
-
DNSgamingw.netRemote address:8.8.8.8:53Requestgamingw.netIN A
-
GEThttps://gamingw.net/forums/public/style_images/master/f_icon_read.pngRemote address:104.21.65.85:443RequestGET /forums/public/style_images/master/f_icon_read.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:34 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 127
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZzW8RP6bP9GLbwPS7kwmnruhpbE0FYl9gcvD%2FusEt8ndEC5Ma7GZILF0yvYMNwD%2Bn6FYbVYUlArdvFQNUZS9VNA3D8odW9dGufaOiM%2BhtwvpZ5NoMJJo36uBH3lcyw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca91ec52643f-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/uploads/profile/photo-44563.gif?_r=1448768805Remote address:104.21.65.85:443RequestGET /forums/uploads/profile/photo-44563.gif?_r=1448768805 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:34 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CHizgIT4VjbFPHg1BvyWc0vs8F0n0sPGTp%2Fj1JSvFwoZGQEOSoA2sBBa04Uxjz9RKcZkoPZJ%2F5RUNgd5NiXx4Wu9YZApbKYsfT8U6ZzQTIpZVvoLtL6XyF2pTtcJjw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca923ca5643f-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.cssRemote address:104.21.65.85:443RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:34 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QJriovlX7qyhxbNm8L2VMOJUHuf59SN28H5uwrXkyeUZaZ9P%2FdAlX%2FjZEYkyJTgiF59%2FJWscramNz%2FCe3JoabQz5valTxazjZDYfn8e4bsnJbDtikLc7FaEamK6lhw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca929d19643f-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=jsRemote address:104.21.65.85:443RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:31 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5yfreMmDd56Vy6RkgMuN2cClDzMwnUUbL6C3lNU8ZmrPJhtfFK%2FoGCWAopyps0yH7jHm%2BXzwja%2Ff5Xi02WLVoMxWwG%2ByZonTDCziGRpTCFLpYn%2ByvSK%2FJzD5ytV5PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88b4ca7fd9e5386b-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jsRemote address:104.21.65.85:443RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:42 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3%2BrhwBOJ9jtLn5Akc%2FI%2Bfnl8qBKA0frcKCHNGqwl61ypdj3KGleueW4HtwP1DzZ98ZIWl4wjRTTNd6OIgMz8aBYoJni8sGFSFwPTUmz4Qs01BopadpQRNyIpLMWHQw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4cac70b9f943c-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/public/style_images/master/feed.pngRemote address:104.21.65.85:443RequestGET /forums/public/style_images/master/feed.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:29 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 122
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BnFzjQ4gZAOiB9Ei0TKRvQGE99%2BW7StuWvvKkAKC3sAEx1zJa0CgI2GvWgONayh3GNageioZMOsi5rgFamjJf4ZRLa5T6fCwzpPp7pMaJ01wD6pFUD3yyFFepsuk%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca740f716408-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/public/style_images/master/useropts_arrow.pngRemote address:104.21.65.85:443RequestGET /forums/public/style_images/master/useropts_arrow.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:29 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 122
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OdJ1c2KjZwbCR9a30mEYoL6Gjrc1HrM5AkfH41RtLvdmvlYp651E1L0hVl1QIoihZCQY04d8EAfkU8EMyEo9tEMgbFne9J2f9W9SZLStOshNxRypda3yUZ6baKRGRA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca765a096408-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/public/style_images/master/top.pngRemote address:104.21.65.85:443RequestGET /forums/public/style_images/master/top.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:32:36 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 129
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BdY%2FgYmcQeT7xILE5VCXyt45RfcrDQWe30flNqU%2FBnZYk%2FRVvJ8E5UCBzll2dSmiCzX9m73ixVB8jFgB%2FiIkDqef6clQ%2BYMG4q90VeUZUlAO8FQhdoeGkwxSOql72g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4ca9e4d406408-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
GEThttps://gamingw.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0Remote address:104.21.65.85:443RequestGET /forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: gamingw.net
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Date: Wed, 29 May 2024 07:33:12 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pQA7Sp55VheNS8tJTrajQ%2Fqe9Rauy5p88%2FDU32Kjb%2BVhePeXyMV2Li%2FODoFe9cvfIPobGF%2FgLO%2Ff7aJ%2F9MfU0E2qaYEnYktrQZVSuUe4OSKXVlM2LU7kxwbrBF6bMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88b4cb7ecf246408-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
DNScrl.usertrust.comRemote address:8.8.8.8:53Requestcrl.usertrust.comIN AResponsecrl.usertrust.comIN CNAMEcrl.comodoca.com.cdn.cloudflare.netcrl.comodoca.com.cdn.cloudflare.netIN A104.18.38.233crl.comodoca.com.cdn.cloudflare.netIN A172.64.149.23
-
GEThttp://crl.usertrust.com/USERTrustECCCertificationAuthority.crlRemote address:104.18.38.233:80RequestGET /USERTrustECCCertificationAuthority.crl HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: crl.usertrust.com
ResponseHTTP/1.1 200 OK
Date: Wed, 29 May 2024 07:32:43 GMT
Content-Type: application/pkix-crl
Content-Length: 759
Connection: keep-alive
Last-Modified: Wed, 29 May 2024 04:24:29 GMT
Expires: Wed, 05 Jun 2024 04:24:29 GMT
Etag: "71225af61bb2c4fb89b3a6704d6f1d7bf330c73d"
Cache-Control: max-age=600815,s-maxage=3600,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1768
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 88b4cace9b219553-LHR
-
GEThttp://ocsp.usertrust.com/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBSr83eyJy3njhjVpn5bEpfc6MXawQQUOuEJhtTPGcKWdnRJdtzgNcZjY5oCEQDzZE5rbgBQI34JRr174fUdRemote address:172.64.149.23:80RequestGET /MFIwUDBOMEwwSjAJBgUrDgMCGgUABBSr83eyJy3njhjVpn5bEpfc6MXawQQUOuEJhtTPGcKWdnRJdtzgNcZjY5oCEQDzZE5rbgBQI34JRr174fUd HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.usertrust.com
ResponseHTTP/1.1 200 OK
Date: Wed, 29 May 2024 07:32:34 GMT
Content-Type: application/ocsp-response
Content-Length: 980
Connection: keep-alive
Last-Modified: Wed, 29 May 2024 04:38:56 GMT
Expires: Wed, 05 Jun 2024 04:38:55 GMT
Etag: "1098df30618ce1510d8353b487eab2ddae15553c"
Cache-Control: max-age=602637,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 454
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 88b4ca963e606552-LHR
-
DNSi1.wp.comRemote address:8.8.8.8:53Requesti1.wp.comIN AResponsei1.wp.comIN A192.0.77.2
-
DNSi1.wp.comRemote address:8.8.8.8:53Requesti1.wp.comIN A
-
DNSi1.wp.comRemote address:8.8.8.8:53Requesti1.wp.comIN A
-
GEThttp://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.pngRemote address:192.0.77.2:80RequestGET /saltworld.net/forums/public/style_images/master/profile/default_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: i1.wp.com
Connection: Keep-Alive
ResponseHTTP/1.1 404 File Not Found
Server: nginx
Date: Wed, 29 May 2024 07:32:37 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-nc: HIT lhr 7
Alt-Svc: h3=":443"; ma=86400
-
GEThttp://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.pngRemote address:192.0.77.2:80RequestGET /saltworld.net/forums/public/style_images/master/profile/default_large.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: i1.wp.com
Connection: Keep-Alive
ResponseHTTP/1.1 404 File Not Found
Server: nginx
Date: Wed, 29 May 2024 07:32:37 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-nc: HIT lhr 7
Alt-Svc: h3=":443"; ma=86400
-
GEThttps://coinhive.com/lib/coinhive.min.jsRemote address:172.67.165.117:443RequestGET /lib/coinhive.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: coinhive.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Wed, 29 May 2024 07:32:41 GMT
Content-Type: application/x-javascript
Content-Length: 1115
Connection: keep-alive
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ETag: "806233d282cfd71:0"
Last-Modified: Tue, 02 Nov 2021 00:44:41 GMT
Set-Cookie: ARRAffinity=2c67d33be6b9592c13d11097748916f7e95d849041273820c139acf9e6d026ba;Path=/;HttpOnly;Secure;Domain=coinhive.com
Set-Cookie: ARRAffinitySameSite=2c67d33be6b9592c13d11097748916f7e95d849041273820c139acf9e6d026ba;Path=/;HttpOnly;SameSite=None;Secure;Domain=coinhive.com
Vary: Accept-Encoding
X-Powered-By: ASP.NET
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SpvLJjjUw6Bzj4a7m7CHpECCWdsGGPcbthbxxk1Mv%2FdqKJwPLGQSJZ35D0EvhgHJEU3wTn0COUwxHO6vKJS66XK9VgvpNzo1dYcHJer6w%2B6H0te%2BA9XYMjFXRLJF%2FlU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88b4cabaaf358873-LHR
alt-svc: h3=":443"; ma=86400
-
DNScrl.comodoca.comRemote address:8.8.8.8:53Requestcrl.comodoca.comIN AResponsecrl.comodoca.comIN CNAMEcrl.comodoca.com.cdn.cloudflare.netcrl.comodoca.com.cdn.cloudflare.netIN A172.64.149.23crl.comodoca.com.cdn.cloudflare.netIN A104.18.38.233
-
GEThttp://crl.comodoca.com/AAACertificateServices.crlRemote address:172.64.149.23:80RequestGET /AAACertificateServices.crl HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: crl.comodoca.com
ResponseHTTP/1.1 200 OK
Date: Wed, 29 May 2024 07:32:40 GMT
Content-Type: application/pkix-crl
Content-Length: 607
Connection: keep-alive
Last-Modified: Wed, 29 May 2024 04:24:29 GMT
Expires: Wed, 05 Jun 2024 04:24:29 GMT
Etag: "2ad2080e7a8f0ee40d6da2d8f43f6aafc9d5f8e7"
Cache-Control: max-age=602699,s-maxage=3600,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 2600
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 88b4cab728f94911-LHR
-
GEThttps://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jsRemote address:172.67.166.97:443RequestGET /forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.js
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U61xxvYw323WcgpaZDmcANCKYckcNudo4LjxMlo1bzAZ0tVOQ%2BR5qBi%2ByEI1BMV2YP9mMCy%2Fe0j0t%2Bx2p8tf%2For4K89zrRuj8VcmitD0oci2lqENsESt9jTrQVbAh7nE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b4cac68f496430-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://saltworld.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0Remote address:172.67.166.97:80RequestGET /forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: saltworld.net
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
Date: Wed, 29 May 2024 07:32:42 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://saltworld.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FToDI%2BkSRYCreCI02DZi8mLX7rLyZhUSNbXgXDsXAzCwV9s8suEzQ6kbfM7mcQZqv8ipyaCasPrUgMJ7D2qHL4nLwtj12uJEZXiIXISeP7eorCWB2UN5f2legqi7h30D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88b4cac3f841948a-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttp://www.google-analytics.com/ga.jsRemote address:142.250.75.238:80RequestGET /ga.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.google-analytics.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Wed, 29 May 2024 05:43:01 GMT
Expires: Wed, 29 May 2024 07:43:01 GMT
Cache-Control: public, max-age=7200
Age: 6594
Last-Modified: Tue, 12 Dec 2023 18:09:08 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
-
DNSwww.microsoft.comRemote address:8.8.8.8:53Requestwww.microsoft.comIN AResponsewww.microsoft.comIN CNAMEwww.microsoft.com-c-3.edgekey.netwww.microsoft.com-c-3.edgekey.netIN CNAMEwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netIN CNAMEe13678.dscb.akamaiedge.nete13678.dscb.akamaiedge.netIN A23.55.97.181
-
104.21.11.155:80http://saltworld.net/forums/public/style_images/master/f_icon_read.pnghttp
HTTP Request
GET http://saltworld.net/forums/public/style_images/master/f_icon_read.pngHTTP Response
302 -
104.21.11.155:80http://saltworld.net/forums/uploads/profile/photo-44563.gif?_r=1448768805http
HTTP Request
GET http://saltworld.net/forums/public/style_images/master/useropts_arrow.pngHTTP Response
302HTTP Request
GET http://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.cssHTTP Response
302HTTP Request
GET http://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=jsHTTP Response
302HTTP Request
GET http://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jsHTTP Response
302HTTP Request
GET http://saltworld.net/forums/uploads/profile/photo-44563.gif?_r=1448768805HTTP Response
302 -
192.0.73.2:80http://www.gravatar.com/avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pnghttp
HTTP Request
GET http://www.gravatar.com/avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngHTTP Response
301 -
192.0.73.2:80http://www.gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pnghttp
HTTP Request
GET http://www.gravatar.com/avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngHTTP Response
301HTTP Request
GET http://www.gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngHTTP Response
301 -
172.67.165.117:443coinhive.comtls
-
104.21.11.155:80saltworld.net
-
192.0.73.2:80www.gravatar.com
-
104.21.11.155:80saltworld.net
-
104.21.11.155:80saltworld.net
-
104.21.11.155:80saltworld.net
-
172.67.165.117:443coinhive.comtls
-
192.0.73.2:443https://www.gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngtls, http
HTTP Request
GET https://www.gravatar.com/avatar/6128162e0ab80b6aaefd01d25ec9fefe?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngHTTP Response
302HTTP Request
GET https://www.gravatar.com/avatar/ae111d25cbb9b2d7293e8bdb2fcfe8b3?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngHTTP Response
302HTTP Request
GET https://www.gravatar.com/avatar/6ab9cf9740f754d0565ec0f4b1250e8e?s=100&d=http%3A%2F%2Fsaltworld.net%2Fforums%2Fpublic%2Fstyle_images%2Fmaster%2Fprofile%2Fdefault_large.pngHTTP Response
200 -
104.21.11.155:443https://saltworld.net/forums/public/style_images/master/feed.pngtls, http
HTTP Request
GET https://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=jsHTTP Response
302HTTP Request
GET https://saltworld.net/forums/public/style_images/master/feed.pngHTTP Response
302 -
104.21.11.155:443saltworld.nettls
-
192.0.73.2:443www.gravatar.comtls
-
104.21.11.155:443saltworld.net
-
104.21.11.155:80saltworld.net
-
104.21.11.155:80http://saltworld.net/forums/public/style_images/master/top.pnghttp
HTTP Request
GET http://saltworld.net/forums/public/style_images/master/top.pngHTTP Response
302 -
104.21.11.155:80http://saltworld.net/forums/public/style_images/master/feed.pnghttp
HTTP Request
GET http://saltworld.net/forums/public/style_images/master/feed.pngHTTP Response
302 -
104.21.11.155:443https://saltworld.net/forums/public/style_images/master/f_icon_read.pngtls, http
HTTP Request
GET https://saltworld.net/forums/public/style_images/master/f_icon_read.pngHTTP Response
302 -
104.21.11.155:443https://saltworld.net/forums/public/style_images/master/useropts_arrow.pngtls, http
HTTP Request
GET https://saltworld.net/forums/public/style_images/master/useropts_arrow.pngHTTP Response
302 -
104.21.11.155:443https://saltworld.net/forums/public/style_images/master/top.pngtls, http
HTTP Request
GET https://saltworld.net/forums/public/style_images/master/top.pngHTTP Response
302 -
104.21.11.155:443https://saltworld.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0tls, http
HTTP Request
GET https://saltworld.net/forums/uploads/profile/photo-44563.gif?_r=1448768805HTTP Response
302HTTP Request
GET https://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.cssHTTP Response
302HTTP Request
GET https://saltworld.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0HTTP Response
302 -
104.21.65.85:443https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.csstls, http
HTTP Request
GET https://gamingw.net/forums/public/style_images/master/f_icon_read.pngHTTP Response
404HTTP Request
GET https://gamingw.net/forums/uploads/profile/photo-44563.gif?_r=1448768805HTTP Response
404HTTP Request
GET https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&f=public/style_css/css_4/ipb_help.css,public/style_css/css_4/ipb_styles.css,public/style_css/css_4/calendar_select.css,public/style_css/css_4/ipb_common.cssHTTP Response
404 -
104.21.65.85:443https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=jstls, http
HTTP Request
GET https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&g=jsHTTP Response
404 -
104.21.65.85:443https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jstls, http
HTTP Request
GET https://gamingw.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jsHTTP Response
404 -
104.21.65.85:443https://gamingw.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0tls, http
HTTP Request
GET https://gamingw.net/forums/public/style_images/master/feed.pngHTTP Response
404HTTP Request
GET https://gamingw.net/forums/public/style_images/master/useropts_arrow.pngHTTP Response
404HTTP Request
GET https://gamingw.net/forums/public/style_images/master/top.pngHTTP Response
404HTTP Request
GET https://gamingw.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0HTTP Response
404 -
104.21.65.85:443gamingw.net
-
104.21.65.85:443gamingw.nettls
-
192.0.73.2:443www.gravatar.comtls
-
104.21.65.85:443gamingw.nettls
-
104.18.38.233:80http://crl.usertrust.com/USERTrustECCCertificationAuthority.crlhttp
HTTP Request
GET http://crl.usertrust.com/USERTrustECCCertificationAuthority.crlHTTP Response
200 -
172.64.149.23:80http://ocsp.usertrust.com/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBSr83eyJy3njhjVpn5bEpfc6MXawQQUOuEJhtTPGcKWdnRJdtzgNcZjY5oCEQDzZE5rbgBQI34JRr174fUdhttp
HTTP Request
GET http://ocsp.usertrust.com/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBSr83eyJy3njhjVpn5bEpfc6MXawQQUOuEJhtTPGcKWdnRJdtzgNcZjY5oCEQDzZE5rbgBQI34JRr174fUdHTTP Response
200 -
192.0.77.2:80http://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.pnghttp
HTTP Request
GET http://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.pngHTTP Response
404 -
192.0.77.2:80http://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.pnghttp
HTTP Request
GET http://i1.wp.com/saltworld.net/forums/public/style_images/master/profile/default_large.pngHTTP Response
404 -
172.67.165.117:443coinhive.comtls
-
172.67.165.117:443https://coinhive.com/lib/coinhive.min.jstls, http
HTTP Request
GET https://coinhive.com/lib/coinhive.min.jsHTTP Response
200 -
172.64.149.23:80http://crl.comodoca.com/AAACertificateServices.crlhttp
HTTP Request
GET http://crl.comodoca.com/AAACertificateServices.crlHTTP Response
200 -
172.67.166.97:443https://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jstls, http
HTTP Request
GET https://saltworld.net/forums/public/min/index.php?ipbv=e3dc6c59d017b380e9899774b18a7749&charset=UTF-8&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.jsHTTP Response
302 -
172.67.166.97:80http://saltworld.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0http
HTTP Request
GET http://saltworld.net/forums/uploads/profile/photo-3914.57_68bd69e5aed67c7aa3dc4520e02d3f4dff99e864?_r=0HTTP Response
302 -
172.67.160.162:443gamingw.nettls
-
172.67.160.162:443gamingw.nettls
-
142.250.75.238:80http://www.google-analytics.com/ga.jshttp
HTTP Request
GET http://www.google-analytics.com/ga.jsHTTP Response
200 -
204.79.197.200:443ieonline.microsoft.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
8.8.8.8:53coinhive.comdns
DNS Request
coinhive.com
DNS Response
172.67.165.117104.21.57.186
-
8.8.8.8:53www.gravatar.comdns
DNS Request
www.gravatar.com
DNS Response
192.0.73.2
-
8.8.8.8:53saltworld.netdns
DNS Request
saltworld.net
DNS Response
104.21.11.155172.67.166.97
-
8.8.8.8:53gamingw.netdns
DNS Request
gamingw.net
DNS Request
gamingw.net
DNS Request
gamingw.net
DNS Response
104.21.65.85172.67.160.162
-
8.8.8.8:53crl.usertrust.comdns
DNS Request
crl.usertrust.com
DNS Response
104.18.38.233172.64.149.23
-
8.8.8.8:53i1.wp.comdns
DNS Request
i1.wp.com
DNS Request
i1.wp.com
DNS Request
i1.wp.com
DNS Response
192.0.77.2
-
8.8.8.8:53crl.comodoca.comdns
DNS Request
crl.comodoca.com
DNS Response
172.64.149.23104.18.38.233
-
8.8.8.8:53www.microsoft.comdns
DNS Request
www.microsoft.com
DNS Response
23.55.97.181
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
914B
MD5e4a68ac854ac5242460afd72481b2a44
SHA1df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA5125622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5
-
Filesize
70KB
MD549aebf8cbd62d92ac215b2923fb1b9f5
SHA11723be06719828dda65ad804298d0431f6aff976
SHA256b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b
-
Filesize
1KB
MD5a266bb7dcc38a562631361bbf61dd11b
SHA13b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA5120da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc
-
Filesize
252B
MD5d35a3d5e82aa4a35db8848799b465d5d
SHA116c76feb4350967bda23a81c5c834e0237e3082b
SHA256c873b67247b6ce311b61c6105806f945b9eb0aa6b51c8ea2b5a0cb6278382bd3
SHA512af7f52da31d895803275575871eb95853b4d3c65f93f3440bcd20b7f04511c30dbc5f9d20dd94af6d74c7830d5111209f5ea1c7ae775312b83d45c3f5496f5cc
-
Filesize
252B
MD5a0bbe3a463454bbbf056568f450ecb64
SHA1becebc5e080eab1856fc51e95d8ef3359945f4bf
SHA2569d7e889e30c66ead1e5172953c6ae328d0b708448f08c69f9f37300c3c129ccf
SHA5121a9399b60d3a84deaef37031f2bf500a91d1d11d34fda21c23d61115e5b849d52d72edc99c388678d35893e59e5bf65a2b58bfb6b89ebf6f9f561024678a6632
-
Filesize
342B
MD515cb975f471fb8fbe71c83edb53600d4
SHA116ab267c28b64da8ff3c5950bdb253badd306e38
SHA25648ca3321cda514c0fb3e26dec96e6927242647fda5168d4aaa218af849e8484e
SHA5120a9f60d152af091f62094e61ab43d198215810917c181b1b072835c27ba0679d922ac1e0c6ae15d37f887d1ac60e5a3d50a218b73a0096b88831140a7fd327b8
-
Filesize
342B
MD569364a222a9ad4792620a8ecb144ee57
SHA137be04bd1f5de2ad9bd768aac0ef47fcda28b90a
SHA256d0a150c49dc3b7946eae31f468eb33859153871a2341897f137fe749c83c51f8
SHA5120e2e0da30f5dfde7544aba365dbf17af7bf32f5622c8262ac3cbca2ae4d0cad48de9b6b260cd69140641b82e08ff3ea10bfdf47eb07e0e39ecb631b7aea31a10
-
Filesize
342B
MD596035d5b51a653a091682dbbded041c3
SHA1bc94ccb88ca4c1db80e6ba7f16e67f93a7b7b2f3
SHA2562658425f9a785a125b534567034cdd30a02e626412a3453709ae999e7b7708f0
SHA512b66b6be88947574e1cf2fe53a8146b7371a3b84b0f9b3d3094c0a1b154c53db8754af8dadf2d59ba9419d23e193dd606c8fc5f571abd41971efe5a18345fedab
-
Filesize
342B
MD5dae4a66f1f95a60564bf773235c66f84
SHA17f7eddf0474e0bb1ddc36f7014458dc0e392c700
SHA256daf59e7e82e03eefccf6342119fda5be701714e2023272442a2afba1e2fea9e2
SHA51236af6574f9ea89a2bda3c9eef326489bfc398a241f6e5af65caf04deff42bff4b93c395bbad5367beb491e799396a0a5053e98449d5bf7698c51edc59c72c2fd
-
Filesize
342B
MD58f247804746ae7d57219b1ed71eae025
SHA1293efaff82c75554afcd4e9c3fff34348891158f
SHA2564e13b53ee2c4bc02145cd5438ce30c643a554936f7196fd3eb7ea9b881753d95
SHA512707960eef2f8baf32e0ed8020239e97f0e8b374db01ee053ad5df40a3eed59ca1858c2ae58504a23ef06bf4081069daff5d37e0bcf9349cb0babc7c1014dc68e
-
Filesize
342B
MD53f3c127816f1d166b4e065f62c283f9a
SHA178d2f3043140563f457a231b34092009f761cd90
SHA256447c3cc48c7ceeea50937f1b2e312f929be371bd64775618fa9d118fc96b529b
SHA5125beb5d0110a5f9a876b6c1a9563e59b41be5e74a22ce4d82544fd3df08270eef8b6a61a190108d9e079d708be4f41db4bccfae0bd81fa1170989829a272db402
-
Filesize
342B
MD5d9e171cbcffb3ec6737fd90649b8393b
SHA171d65f3ff6c006fcea1215334a8e5cfe4b43fd7d
SHA2561a53a8f943780a1a0ec62a62c8cda9524daf30c8a54c32d4e763e813f34f6772
SHA512612d90f71b9b259c23b2ea20a61ab0cf486763752433b13a07262f9954e15d6ff4410fe24fec460c37d635ed3104567f50206b1dc0179bb1411215f1cb0c7ec6
-
Filesize
342B
MD51224acb83ed0e34c48c1ff6665ba50a6
SHA14be694c6f5cecd4113b9a2e5261feba5b4cb9a48
SHA25689fc09e272e57f46b17947ea6a3267018dd6c313894a0181e32c61020a6b81a0
SHA512587782c8cd6b8aa6d6ee726e40706e9f10d03817ff49639e902d9fb8e0671612706c941cf91635b1e45958caec80545dd346192e315b732702a7f9eb5073e4c5
-
Filesize
342B
MD52ed94bcfac90f4ff39bdc0604243df89
SHA1ef7d4e417abe6022ad9bcbcbb27dc804a4cb2b88
SHA256d59c2561e5afe72ee5b28e4f86c0daf8731021b3059d719a8b41756be841ec96
SHA512a07ddf8a074312214ea2ff65c1edb80266c389cf7d1f3ae6c902e3d55f8f7d3e724b2e8c3772f45d305bf4202de73a8a510f07f4d18155f6581410ca8d057f74
-
Filesize
342B
MD5ef1e7275750955aa9e8d366f5eb9ad95
SHA1a7f876a0187331f13d711aba5bb24148744c58e5
SHA256e099f7b03c8212c04abc0b77e3db8391fc7f6f33172eed2e0b436d7744218d5d
SHA512e2fb31444c798f79c6d05715e6d373dc80ae2994805ad8b201eeeec9058c031ba2528f05a82c15485f7c4c921e7e28f619238ebfa0bc86c3e4afa9172cc42327
-
Filesize
342B
MD52087263f9d8832682ef4c964a5206c95
SHA161606f72d8bdd02e95f72e3be34786d50321e2cb
SHA256a0da29efc27a902880610885e6f12424e83165943a1979b2e477b4b8ea561c53
SHA51288557e48a9cf8d86513318fa31fdd66b934b89d2b34e7fb088f98498546f3d0713ce35063af2b616a06eae472782a9b488c3c4a2410e839f1671fb92766ee5fa
-
Filesize
342B
MD547e69b3b5a027ed60af544754396bf4a
SHA122b5e68f4496cb8110ab538d83e1dd5f9e6718f9
SHA256cf94bfe6815d3e26453f3cecdb85592bc11c66e0f5da03933f6e5b373f2828ba
SHA512bcd45724240539d83150c20041ce8fbaeac2fb676b88032b43daf8faf4391ee23fab31c2576d010e6f809c3d5c0ff67dedbe9f99541175284d1ee0d980fff228
-
Filesize
342B
MD5e82a07088f2aaa961671a186a91e997b
SHA1914bdad98babcab9d2cd831a01d0ac85d7a2cef3
SHA256fc51fefca703e63223024c3aa7451221e26d909c24ba35a7155e1237a220386b
SHA5126bd27069064f2b81ad504e84ff1c337ca7fe1d7a5a4c634131dc37135f96fb41d855d9a28445ae03c0c837cd5f5025f57f48dcb645dba7d5d5e476ea6c4fc4f2
-
Filesize
342B
MD5812ba5fc4293073b64c47941a36bbdeb
SHA1e2d2ff4957dc52b333e4167cccd0eece65dff53c
SHA256b4c3910a09b9cc44dc0a3c178640c3d59bb9783c2ef312f1a2086e54c6914342
SHA512cf0243d57b56e48698bb1c18c0aae6e6ff3a0237ebba3202a8f686a2aeffc26f669984dce35b81539ec42d9f2e023cce478a521ebc93b45663a35f09655863a9
-
Filesize
342B
MD54ad736aa68073c67467cae42dd704b0b
SHA1dcd4962cf1e107b1ba776b2051f6964f7d1e7d3a
SHA256a41c1b442645f5f5600dc7585888b7bcf8d1ddee0997ed0b1ce62019174ccc9e
SHA512c96a789d05a6f6fdc04673140f6084f64c4923ed235002374a0c0359e3d380ac7258b747830b952bfded273f530118890fdda7df08b1b0b2cbd01b9ddfaf5803
-
Filesize
342B
MD560bde772ef76c550fc963717f76b7fa0
SHA134153091271d6b1a697f8766a99a333d536bf48f
SHA2567f32ad02e09c55543bc272e4e1e3beb2036b8664379843a27dae35cc27157dae
SHA51238a90c8de102639a0e107f4d7a9103013ab13c430ae698bf78259aec06ad636aba2e780aa6e0aeb36dece127e009cb5827e530b21c8717dd016f0d398c72b1e2
-
Filesize
342B
MD535c79d749613bbfc88a7ef11875e8fb9
SHA1fb2f0fa745a6a68bebc56b58592787344feef4d4
SHA25660609ad8b14b2183df43f2b236a10c5079ef3d12bd98168080171a9a34dc7643
SHA512b8c81f4ffea00d4c12d42b92fad58a0dfd8c7cdec027cc752f445c8910d120a0a4581a21856752bcd316b3098583043e35ad3d32be7cb3ac173468dc8e2b43f7
-
Filesize
242B
MD52cc585bf33ad0ad7e3fad9c474ec9124
SHA198b220d2bf81a2bd7396a9aa21434e50e990c4ae
SHA256cb90ddcd2ff78d4b496d63278026ac8f9b6eb1fda35942025f0f038d09aaab15
SHA5126bf79db1dec6b50fa5cbd158c04b944012561b7ceb1d68a93599ec72f500832162c781674bee1bb55466e09b26274731822ac30e73c23426a1398ab625abcbde
-
Filesize
181KB
MD54ea6026cf93ec6338144661bf1202cd1
SHA1a1dec9044f750ad887935a01430bf49322fbdcb7
SHA2568efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA5126c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b