Report - my.teamos.xyz/00130da181023a42eea8f7a806ed9f1c/announce7:comment39:Downloaded

Report Overview

Submitted URL
my.teamos.xyz/00130da181023a42eea8f7a806ed9f1c/announce7:comment39:Downloaded
IP
104.21.71.43
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 17:50:31
Access
public
Website Title
Team OS : Your Only Destination To Custom OS !!
Final URL
www.teamos.xyz/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.teamos.xyz	unknown	2022-01-12	2022-04-13	2024-04-18	13 kB	2.0 MB	172.67.143.25
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-25	429 B	32 kB	216.58.211.10
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-04-24	2.4 kB	579 kB	45.133.44.9
teamos.xyz	unknown	2022-01-12	2022-01-13	2024-04-15	467 B	174 kB	172.67.143.25
my.teamos.xyz	unknown	2022-01-12	2022-04-13	2024-03-31	533 B	174 kB	172.67.143.25
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-24	411 B	87 kB	188.114.97.1
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-25	874 B	163 kB	142.250.74.168
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-04-24	492 B	55 kB	104.16.79.73
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-25	1.6 kB	124 kB	216.58.207.227
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-24	858 B	842 B	35.158.46.84
honeyreadinesscentral.com	unknown	2024-04-23	2024-04-23	2024-04-24	2.5 kB	5.6 kB	172.240.108.76
briefaccusationaccess.com	unknown	unknown	No data	No data	7.8 kB	22 kB	172.240.108.68
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	438 B	12 kB	142.250.74.106
instrumenttactics.com	unknown	2022-01-23	2022-01-23	2024-03-25	1.3 kB	55 kB	192.243.59.13

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	instrumenttactics.com	Sinkholed
2024-04-25	medium	instrumenttactics.com	Sinkholed
2024-04-25	medium	instrumenttactics.com	Sinkholed
2024-04-25	medium	honeyreadinesscentral.com	Sinkholed
2024-04-25	medium	honeyreadinesscentral.com	Sinkholed
2024-04-25	medium	briefaccusationaccess.com	Sinkholed
2024-04-25	medium	briefaccusationaccess.com	Sinkholed
2024-04-25	medium	briefaccusationaccess.com	Sinkholed
2024-04-25	medium	briefaccusationaccess.com	Sinkholed
2024-04-25	medium	briefaccusationaccess.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-05-05
Pretty URL www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-05 16:28:32 Times Seen43696 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	unknown	14 kB	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-05 12:26:18 Times Seen258 Hash b5bf3196e186c65f858bc7e486cf9cba 917caf23e7cac4ba0613ae06e6bf1b72c0e69c98 bb8411520f5e4a207375f13c7266dbdf5fb56fd58fa695c0d486ddf476346d02 Loading...

	instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js	82 kB	2024-04-25	2024-04-25
Pretty URL instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:39 Times Seen2 Hash 9cfa47b7b306a7095ebbc768f5ab1a61 ea359a21f815fe73d8bfa5927f02fa86cf624e13 5dee475ede02849da4c55b77cafb5b2d9997101d3674d2ce6cf2d597733086ee Loading...

	static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793	19 kB	2024-04-17	2024-05-03
Pretty URL static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 04:05:01 Last Seen2024-05-03 04:44:29 Times Seen1486 Hash 3be93fd15d2f7dee2fc0c8981c6fa5c6 8cd88c36fad3e96641dbc4d781f5ddbe5123312f 17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee Loading...

	unknown	109 B	2024-04-13	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-13 00:57:00 Last Seen2024-04-29 04:36:19 Times Seen11 Hash 7ed74a97f1b51107642cbd354e8e9537 368722c30c49ed7ad343dd7986cc1e975ff7473b bdbbe3d74c92fb34f7cf7f5b502d5a0f9c5c91129b2fc95bc836c3eb10a8cf90 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-05
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-05 17:19:03 Times Seen344446 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-05
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-05 17:05:03 Times Seen141602 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e	214 kB	2023-03-12	2024-05-05
Pretty URL www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:31:50 Last Seen2024-05-05 12:26:19 Times Seen621 Hash d0ab265a4f68a45efc52408bd69a7f25 c57033113a290427c17a5cd1c94b1829aac06fed abedeb2dbbfa0642370887c7fd082a1774f4e1f8129a4d9adba2908fe9e8b4d3 Loading...

	unknown	4.9 kB	2024-04-25	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:38 Times Seen1 Hash 8da147e9758c6ac2bab56a1a3cdccb09 c218f640912eca9340ba795be1b46c106393e180 8b04351b164005c82828f14de7e64b58a7779fa6d7b7467ff1e3256579208f34 Loading...

	www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e	3.4 kB	2023-03-09	2024-05-05
Pretty URL www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:27:16 Last Seen2024-05-05 12:26:18 Times Seen645 Hash 57c077607d1b4ba5bfeac6740d6e9576 8ce714d869d8f3b46eb3a7c7689920e1a85b0808 c803ce6d437915781a624a97755010f88deffd73bcf1a8e40fe98fc2d0e1ca3d Loading...

	unknown	206 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-05 12:26:19 Times Seen258 Hash 2700edffedbdaa40ab6a216ae8ced12f 573cb508bb36874954aa08c362370776cf73963c 35725d60531c253a1c499e18c6164aa07bcd1da0fa6e20e193b427e5970d8d09 Loading...

	unknown	710 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-05 12:26:19 Times Seen258 Hash 44f474ad795f2c9a6ba3e00ba7d3e0ce fca7a12113dc770c62721146decd70697384e78f b23f5c96634b513c51b13397c53b235960fed3f771e72923c0d557e4e0830e5c Loading...

	www.teamos.xyz/js/xf/notice.min.js?_v=099e916e	3.7 kB	2023-03-09	2024-05-05
Pretty URL www.teamos.xyz/js/xf/notice.min.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:27:16 Last Seen2024-05-05 12:26:18 Times Seen650 Hash b725cc9681612e5c4a6de094bbe33bd9 c2bd0760c401cf86e15fc2b941b14fa7901633e3 a5dcfd1d44af85302c19886c111e277273cca860febaae5f8cdb0de61733b44b Loading...

	unknown	145 B	2023-03-12	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:17:49 Last Seen2024-05-05 12:26:18 Times Seen256 Hash 56345684a4f92ef41f648d4d85464d99 a8c16ba1be3fb3c3dc7eff8358d223fc86cc3bde aa59fc72954112cea004fa466abb1ad524db3fa8321764f9699745769aea8d95 Loading...

	instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js	27 kB	2024-04-25	2024-04-25
Pretty URL instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:39 Times Seen2 Hash 1ff76c1da5faf62d39624768cd8f9a52 0f34c871cff01c185f9676769766395695da0042 6cfb3d8730ed74c4aa16e2b8e6b15da87aa8864c3768f84a345efe3b7e5d2a44 Loading...

	unknown	3.3 kB	2024-04-25	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:38 Times Seen1 Hash 0c62bc708667926adb88404fe524a7d9 85422ceb8690cf65566353ff6ae308d44615624b a530fb497cc96120aa0bef8a96cfdb661380cd80f22391f2054e0f2c5178fbff Loading...

	instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js	31 kB	2024-04-25	2024-04-25
Pretty URL instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:39 Times Seen2 Hash d8a8557ced21b5b8118a2ca48a32a24a 3332600bc275b22b26c978380aa8e91e3f58694f f2bf0d3bc649d70b821faa187163c965d2c5c9862c967c4768d3bd3b7260f160 Loading...

	www.teamos.xyz/sandbox%20eval%20code	147 B	2023-04-11	2024-05-05
Pretty URL www.teamos.xyz/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-05 17:19:03 Times Seen344953 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	unknown	357 B	2023-03-12	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:17:48 Last Seen2024-05-05 12:26:19 Times Seen258 Hash 00f88953f2d2d6770a8c26b60786c7a6 6cafe6508c1f114bf474f948fc6776a6131f3a72 1d996072b68082027d84ea8ccd0588497eb43fbfc4a2b2225bb443ff1424f4cc Loading...

	www.googletagmanager.com/gtag/js?id=UA-77872044-1	202 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=UA-77872044-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:38 Times Seen2 Hash 5b814fc7f5194263d7b7e53c63e2e44c cc0135d496b7388a666bb78e26a23c2a17890a82 77a6bdb49c2a209af5aa89111f6ae17bdfe7aaa300b52e5982b86d02781f4511 Loading...

	www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e	43 kB	2023-03-07	2024-05-05
Pretty URL www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:34 Last Seen2024-05-05 12:26:19 Times Seen766 Hash 372b0c5f17990ad741c3d02593f63fe8 4e577cb859755cbf104a2334e6307a5291558689 ef5f0b7e161099d503298ab2d66a927f48401f992d188cd04415419b41dcd0b1 Loading...

	unknown	2.1 kB	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-05 12:26:19 Times Seen261 Hash 3a3fa1f807c678e04fa94fa684069231 c26e333abe0f139338a79d09557d433bab245107 95464e5d88d803be95b2ee15ce8668f1dc99b75f6aadd4379bc9fbcfba665ba5 Loading...

	www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c	250 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:39 Times Seen2 Hash 19078967dbd94553d7cfe14fcf9adae9 87d62967874e2e363fc7cf0a89f9ab291c54504e 83fc8c5802d4cb25c5a2f4a17ae9fd39616a54046a9efd74ea7f68a42dfe7305 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-05
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-05 16:59:28 Times Seen2270 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2711fceaffbc4adbdef1e52afbde54de	15 kB	2023-03-07	2024-05-05
Pretty Observations First Seen2023-03-07 12:28:02 Last Seen2024-05-05 12:26:19 Times Seen300 Hash 2711fceaffbc4adbdef1e52afbde54de 62a2235b484940a2478213c3ff460153c3071fc3 21d093407e762467a0eb2435e960d0848f2a22eaa9c174a751b0a2203ec0fff7 Loading...

	#2 Eval - c3fe5a83f2c758a8b0b80806ca14ea67	2.1 kB	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 19:50:38 Last Seen2024-04-25 19:50:38 Times Seen1 Hash c3fe5a83f2c758a8b0b80806ca14ea67 fb2208675b86777ecac707b356d6454e1c7aa0d7 6675508244e3d9990681ebc0e8c3c6e14e8f4941964592b5d914dece78725fb0 Loading...

HTTP Transactions (51)

URL IP Response Size

www.teamos.xyz/styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3

172.67.143.25

200 OK

169 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 168768, version 331.-31261
Size
169 kB (168768 bytes)
Hash
d8689b99dce7c881d3130f3c91cfefdf
fb005c93930c13b3a5f449bbc75ba5ee23f609fa
4de49631fe60b17010f7cda29a6236ca6ad6102ea204e5c31d2c1e79ee276938

HTTP Headers

GET /styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: font/woff2
content-length: 168768
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-29340"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4285
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xfh9duV3dtHYbVJIs2RkrWC9h0A8KtO49kc%2Fef%2BclzIoKTcrPqSJ9Ng0QWN1HO7D0L2LjFUzlRE0uoxsBLDAgeil%2Bl%2F7nmuVZgp2vkU%2F4ClJgzzw5i4AB3YdEi2bO7PDQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c594f9456a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3

172.67.143.25

200 OK

137 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 136824, version 331.-31261
Size
137 kB (136824 bytes)
Hash
978b27ec5d8b81d2b15aa28aaaae1fcb
76625967fe113a088e0627605b9d1bbfb8a5e47c
943efdb4b38963df0653d778f233b55db3e19f44794e4ff944e33b8849dcdb3c

HTTP Headers

GET /styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: font/woff2
content-length: 136824
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-21678"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4285
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LZb3aer8eklAW3IaJmPzl%2BkGp2Pq%2FOg%2Bd8rEEyQMIvDGKfK%2B17S1cRj8Dqr0vKjtqSW%2FQb2TXkbQ3kb35gNSW1omQjLTYPDrOMKhC998cs0YrpZ97YKFWutLKsLklcXZPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c594f9656a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3

172.67.143.25

200 OK

77 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 76740, version 331.-31261
Size
77 kB (76740 bytes)
Hash
0511670fe2f5405105a6760294c5c51d
61cb879dec4fa97ece0d2a26cd6767c66117841b
c2497d559960ba9e1c68f41674e8bc980d3b229155e068bc7f42f157f81c4388

HTTP Headers

GET /styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: font/woff2
content-length: 76740
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-12bc4"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4285
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jVv5kCq0ovGXEwTRyqRxY07XRRj%2FBmcnE2UTNPhqJC4lqrmJ5FtVpuXLagcLypEGdM9rt8MZuxg6K9FRNQMu0IYOtwICV%2FYhmUgtL9DuXEZa2fCYsoeYc67eEKsrNPjgVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c594f9a56a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/assets/logo/TeamOSBanner.png

172.67.143.25

200 OK

42 kB

URL GET HTTP/3
www.teamos.xyz/data/assets/logo/TeamOSBanner.png
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 440 x 190, 8-bit/color RGBA, non-interlaced
Size
42 kB (41495 bytes)
Hash
6d2647b327cb54f616dcbec207599df0
4e3e0baad833e44a3eb1e2052d3e78fd828180bf
b6201f6ed7ee1358eaad1b0dc43a16dd215f1175ceef43a3169c2e51b3a737a8

HTTP Headers

GET /data/assets/logo/TeamOSBanner.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: image/png
content-length: 41495
last-modified: Sun, 08 Jan 2023 06:26:05 GMT
etag: "63ba61fd-a217"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5782
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9A6ZwIUtJ1O8Hj71lXv3ieWfLHs6kUwRIkbU%2FKMrqfgYGuqIqLW%2FOP5bO2G41wky63Kny0cRwuavBDPJD3vW7mXS9TeiZbC5knxCoA8CFIxIixdVrYnj5a9asqR2oTszGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c594fa056a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/xfa/customusernameicons/icons/star.png

172.67.143.25

200 OK

670 B

URL GET HTTP/3
www.teamos.xyz/data/xfa/customusernameicons/icons/star.png
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
670 B (670 bytes)
Hash
c8ca219ff43a2fb1dea67de2582123af
8fd08b1c430aa569e93d7fcd42f2f03b4ce57c02
9d3d2d2933fa0190f4ded95fabb5bde04bd1bbb0f040a8de93aeb0deda699b73

HTTP Headers

GET /data/xfa/customusernameicons/icons/star.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: image/png
content-length: 670
last-modified: Sun, 07 May 2023 17:28:57 GMT
etag: "6457dfd9-29e"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5782
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qx4JIT3fXqwHVvKR8AnfrwehIgcxO%2B78lwJLjFJuH5eKqjRHaJj7QMLRiCZOBk8bgkOcjq15i4NDFHJYnJrNPBmGAvB3I9A%2F9uhU1XYKO3evEgUY0y9AwOWXhWjpBEv8iA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c594fa556a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/images/dUy8t.gif

172.67.143.25

200 OK

23 kB

URL GET HTTP/3
www.teamos.xyz/images/dUy8t.gif
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
GIF image data, version 89a, 90 x 68
Size
23 kB (22768 bytes)
Hash
38be94eee10c04d248dc14b49a940b93
9d4fece605fc55c0ca18443c3018da3c34e40f05
8928b33dafb9036f74c4298b1e4097b90844fbed60bd41b8b9e3bbe4dcbda25b

HTTP Headers

GET /images/dUy8t.gif HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714033847&k=034405c740f279c15adbbc41dfccb627ca90db04
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: image/gif
content-length: 22768
last-modified: Sun, 07 May 2023 10:55:46 GMT
etag: "645783b2-58f0"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5732
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1%2B0QwDyojvTcdLSQewAh1OxQAS1ZX9XZ%2BzzV6%2B758O8%2FS%2FwAvGSQmdFHj2VF19H%2FxkDmY%2F5l%2F%2BHOlPtHp3wRpf1M1cw8ASZs8ax5aSGOLjNPpyNb1xASCariQ12TGpoPwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c5aa92956a2-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 10:51:04 GMT
expires: Thu, 24 Apr 2025 10:51:04 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 111540
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-77872044-1

142.250.74.168

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-77872044-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73285 bytes)
Hash
5b814fc7f5194263d7b7e53c63e2e44c
cc0135d496b7388a666bb78e26a23c2a17890a82
77a6bdb49c2a209af5aa89111f6ae17bdfe7aaa300b52e5982b86d02781f4511

HTTP Headers

GET /gtag/js?id=UA-77872044-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 17:50:04 GMT
expires: Thu, 25 Apr 2024 17:50:04 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 16:24:08 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73285
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anode_list.less%2Cpublic%3Anotices.less%2Cpublic%3Ashare_controls.less%2Cpublic%3Awidget_xentorrent_sidebar_tracker_stats.less%2Cpublic%3Aextra.less&s=8&l=1&d=1714033847&k=2b4c77b1bba55e2f6c2b40c9fe2cf79d1b72fe52

172.67.143.25

200 OK

17 kB

URL GET HTTP/3
www.teamos.xyz/css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anode_list.less%2Cpublic%3Anotices.less%2Cpublic%3Ashare_controls.less%2Cpublic%3Awidget_xentorrent_sidebar_tracker_stats.less%2Cpublic%3Aextra.less&s=8&l=1&d=1714033847&k=2b4c77b1bba55e2f6c2b40c9fe2cf79d1b72fe52
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
ASCII text, with very long lines (49132)
Size
17 kB (16741 bytes)
Hash
394c418197beab6a31b3281f3342bfac
3af77160350ff52f8d36b47365a118279f412ccb
0573e5c09f0c4164784b44f27da20fe3a50fb04b98ab1fadd5348b82543d0194

HTTP Headers

GET /css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anode_list.less%2Cpublic%3Anotices.less%2Cpublic%3Ashare_controls.less%2Cpublic%3Awidget_xentorrent_sidebar_tracker_stats.less%2Cpublic%3Aextra.less&s=8&l=1&d=1714033847&k=2b4c77b1bba55e2f6c2b40c9fe2cf79d1b72fe52 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: text/css; charset=utf-8
x-frame-options: SAMEORIGIN
expires: Fri, 25 Apr 2025 17:50:03 GMT
last-modified: Thu, 25 Apr 2024 08:30:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tP7TwnlxVA3Aws8nuqMx9RDUUfcnfkFSJ7gjM%2B5p9kAmZf9e%2FBJVFjzT4RaNhXbq3lALw2SC9uLzoCYi7Y%2FsyQjAk%2Fj5Ad2niwktPz57kBrCAMHUEfPGD7cIokgjq0AuyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c594f9e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/avatars/s/86/86944.jpg?1703619014

172.67.143.25

200 OK

1.0 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/86/86944.jpg?1703619014
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 48 x 48, 8-bit colormap, non-interlaced
Size
1.0 kB (1015 bytes)
Hash
b8d640536f661ae127bcababccd0ebd9
da748443dd5f255ac38fae38470328f2bb65ebf1
524e705c6241d6e1c8e8a5843f33ceba1075dbf35fc7d551c47282e83ebcbe0d

HTTP Headers

GET /data/avatars/s/86/86944.jpg?1703619014 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: image/jpeg
content-length: 1015
last-modified: Tue, 26 Dec 2023 19:30:14 GMT
etag: "658b29c6-3f7"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4294
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6YQMNurCNqqGRJNl0Ca6f8BLxh1Mkz6qmcD3A5fe3jc6p9YVmygmGCMjXKrBmdXa%2FZYZ1zMpq%2BnFImTiKwlWg4ITjGWnP7Hcj4kT9kyvpYH%2FIEkqOvjn4sBSnp2ggvbQEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c5c1ae156a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/avatars/s/10/10154.jpg?1710632396

172.67.143.25

200 OK

2.0 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/10/10154.jpg?1710632396
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 48x48, components 3
Size
2.0 kB (1962 bytes)
Hash
1ae90eb6ef7b7b1f2e89b12bc6e186e5
760bdb0af23e710f1c21b8055fd884c3bb5c230c
5107dc58275b02e4e30fd32ac7d95ff9acf247a78ced068285ad97813e378a60

HTTP Headers

GET /data/avatars/s/10/10154.jpg?1710632396 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: image/jpeg
content-length: 1962
last-modified: Sat, 16 Mar 2024 23:39:58 GMT
etag: "65f62dce-7aa"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4294
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H6kwhfHqWXlie1bFdOnhSMoGszyQBMnqteyPZqwJFaP4g8gzo4gcVlIgFqtKdseZVUN6Hm14mq7FDsRdAZpyoipiLWJhgWruv0KY4d7oIyjeaMTFBvMYZU1JZmT1cA6xng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c5c1ae656a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/avatars/s/107/107077.jpg?1706048528

172.67.143.25

200 OK

1.4 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/107/107077.jpg?1706048528
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3
Size
1.4 kB (1386 bytes)
Hash
0817e209abce32118a00bc4cf07ef9dc
330d25bdb4b981e65e19d9426d75ce0f40503ad1
1bd8e52c6abf89929a795cd898612194957472fc8ddab36f551a5c827e23463c

HTTP Headers

GET /data/avatars/s/107/107077.jpg?1706048528 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: image/jpeg
content-length: 1386
last-modified: Tue, 23 Jan 2024 22:22:08 GMT
etag: "65b03c10-56a"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4294
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XED0w2eFjFXa4E1k6wSgFpYC6dR1KLKJ1Ij7nyleyVREdgSbqqekGUG1ddYYYR9Zm%2BVybqGWj5%2BhjlIZaCEm1GlO8aAo%2FD0VCCOQmf9NcEkngVNobAuwzsP9zn6iy%2FB2UA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c5c2aeb56a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/avatars/s/680/680709.jpg?1652892430

172.67.143.25

200 OK

556 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/680/680709.jpg?1652892430
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
GIF image data, version 89a, 48 x 48
Size
556 kB (555912 bytes)
Hash
7f9342b8873e1ca61e8f60143a1b4973
320ec5938431493b75b3f655f3a1998ad1f77414
2695f0d3a1550e0fa5d8aa462fda9f2bd73c23a769deef16e954d5a95e30f076

HTTP Headers

GET /data/avatars/s/680/680709.jpg?1652892430 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: image/jpeg
content-length: 555912
last-modified: Wed, 18 May 2022 16:48:57 GMT
etag: "62852379-87b88"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4294
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y7Rj%2B%2FjC5dcyg3BZnq3AllqN1aAE9P%2FYTCK8uioBY43SER900CUjCosA7o%2F02HqnNRaaJzsg4o4I1LPGyeyke4fLp9ohL1t1ev9%2FxdcAlwutKDpmUhPFHFU3r13lsbHbNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c5c2aed56a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/avatars/s/1017/1017643.jpg?1667582869

172.67.143.25

200 OK

2.0 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/1017/1017643.jpg?1667582869
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3
Size
2.0 kB (1968 bytes)
Hash
da70a4a05b3208c49749e2ff7632818f
dc1cb8040424b8a2be7ab9a5fa881a904f5a6351
6826543c8a2e279c04afaa5c316fa76772ec54fad50ea6b79e8c518aa3f77f0e

HTTP Headers

GET /data/avatars/s/1017/1017643.jpg?1667582869 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: image/jpeg
content-length: 1968
last-modified: Fri, 04 Nov 2022 17:27:49 GMT
etag: "63654b95-7b0"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dvbL6LcgeKbMlBFp%2BOwyoev2ikxNaqWQo4AyfIDSrphoZmgX5G7q5Er5V8YAHGJVjEJYizpWJtE39SGCVMw3XCBHXOfUvCp8jhkWF%2BIDfAub3aqz%2FflR8SosF8XaAUrMiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c5c1ae256a2-OSL
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e

172.67.143.25

200 OK

61 kB

URL GET HTTP/3
www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (15908)
Size
61 kB (60961 bytes)
Hash
372b0c5f17990ad741c3d02593f63fe8
4e577cb859755cbf104a2334e6307a5291558689
ef5f0b7e161099d503298ab2d66a927f48401f992d188cd04415419b41dcd0b1

HTTP Headers

GET /js/vendor/vendor-compiled.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=43704
etag: W/"63926c70-aab8"
expires: Fri, 26 Apr 2024 08:42:19 GMT
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
strict-transport-security: max-age=15768000
vary: Accept-Encoding
cf-cache-status: HIT
age: 549369
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AAxBlBdzGFSMdkxPBj6TFSQWpSVueiV98B3ErMPUL7gpUgpLTr%2FzZWq9v4A6ZWgnIQfGJd8ESo7L1BTDPguL3muh3733Vmar1flYyQvlM1t%2BzseypCM2A5Mn74rmoOiuig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c5ae97e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793

104.16.79.73

200 OK

55 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
gzip compressed data, from Unix
Size
55 kB (54841 bytes)
Hash
2a2ef2840126d21794e5d2fdc2103eb4
83a86ef70d6f65edaf2f6734fd26fb25ba018940
79251a530d82283108732ec0a77567d519379aa91bbcb2cf406a1eac380c6c54

HTTP Headers

GET /beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.0"
last-modified: Tue, 23 Apr 2024 12:12:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c59fc1156c9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2

216.58.207.227

200 OK

25 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24984, version 1.0
Size
25 kB (24984 bytes)
Hash
303a79d404d97ccbb3d803088fc387d8
66e3525b79a1a58a63fe0934f31676dd40c7f033
7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:32:04 GMT
expires: Fri, 25 Apr 2025 17:32:04 GMT
cache-control: public, max-age=31536000
age: 1080
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/data/assets/logo/TeamOS.png

172.67.143.25

200 OK

21 kB

URL GET HTTP/3
www.teamos.xyz/data/assets/logo/TeamOS.png
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
21 kB (20927 bytes)
Hash
86270c1741a9db8f95b7d6fdef2c62b4
17a3a90ec7e9d33dd84a77509446bf64d73d2e9e
83c1feff94030b6ddf0e2105ef24f444520c4e0fe3a0e6bf618eced3d2725bd2

HTTP Headers

GET /data/assets/logo/TeamOS.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: image/png
content-length: 20927
last-modified: Fri, 14 May 2021 15:05:04 GMT
etag: "609e91a0-51bf"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5782
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EU0xCAPaLUThFe0XE1w8qXdJNR38HmdrHI5WV%2FytTKyaeqzNuJqBzfgDySgOFFKvga2557EmBZ8eI%2F67iYTxlIMMFdagwZzjGINB%2BfwPq%2B7zCJdhZHtfv56IhNLVm9i%2FKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c5eddb756a2-OSL
alt-svc: h3=":443"; ma=86400

instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js

192.243.59.13

200 OK

9.8 kB

URL GET HTTP/1.1
instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (26624), with no line terminators
Size
9.8 kB (9800 bytes)
Hash
1ff76c1da5faf62d39624768cd8f9a52
0f34c871cff01c185f9676769766395695da0042
6cfb3d8730ed74c4aa16e2b8e6b15da87aa8864c3768f84a345efe3b7e5d2a44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /7326f362b41f2b6bdb387bd9014ae95b/invoke.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 17:50:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1ea25012bf3ba913b4c16740991ac2dc
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js

192.243.59.13

200 OK

31 kB

URL GET HTTP/1.1
instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30752 bytes)
Hash
9cfa47b7b306a7095ebbc768f5ab1a61
ea359a21f815fe73d8bfa5927f02fa86cf624e13
5dee475ede02849da4c55b77cafb5b2d9997101d3674d2ce6cf2d597733086ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 17:50:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7c630f53389b996bffcc4089f784e983
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.teamos.xyz/favicon.ico

172.67.143.25

200 OK

55 kB

URL GET HTTP/3
www.teamos.xyz/favicon.ico
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
MS Windows icon resource - 9 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel
Size
55 kB (55059 bytes)
Hash
6d9396dc55f2e528b53aa081b562f91f
aba25e72d54c60252f233a4bcf2c5773a11e6359
f2678bc111d1e4768f668ea1d1d8bc086371b13f66688831fb7e5706f7d29638

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: image/x-icon
last-modified: Sun, 05 May 2019 15:07:05 GMT
vary: Accept-Encoding
etag: W/"5ccefc19-2c0ac"
expires: Wed, 22 May 2024 02:44:48 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 207211
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eb5OctSLZmtqf%2FM4t85xfUYv8alH316kkl9CQDAenEe1fEkdTYkii5IzE%2FMHBFKN0QsPSm3vV3quioeTJSE6b14Q3a1lbwyA6vZSzDv10o3pPT9dGnfeczIFLGSI9ZpmTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c5eddb956a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proftrafficcounter.com/stats

35.158.46.84

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.158.46.84:443
ASN
#16509 AMAZON-02

Requested by
https://www.teamos.xyz/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
073ebb71dc2b3e2442d2335dd5c64d95
03c30bd66abe4953977c5c2815585f6635437586
bb5e63dc66a238210978749318815ba258ea6cc7cf9c1aade4bb409f9be54aa4

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.teamos.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=9a16928a-29b1-4b8e-a1a3-78eeac55ccf3:2:1; expires=Sun, 23 Apr 2034 17:50:04 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c

142.250.74.168

200 OK

89 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
89 kB (88740 bytes)
Hash
19078967dbd94553d7cfe14fcf9adae9
87d62967874e2e363fc7cf0a89f9ab291c54504e
83fc8c5802d4cb25c5a2f4a17ae9fd39616a54046a9efd74ea7f68a42dfe7305

HTTP Headers

GET /gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 17:50:04 GMT
expires: Thu, 25 Apr 2024 17:50:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88740
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

proftrafficcounter.com/stats

35.158.46.84

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.158.46.84:443
ASN
#16509 AMAZON-02

Requested by
https://www.teamos.xyz/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
13c83ed5010e0826db702f99de386065
0249eb67a98046ddf59bd7140af5a6aed4e65675
087b8f34afa7948dc41d10211a0df3afc2137d33f8044936e7df47dd38226bfa

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.teamos.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=c88210f3-af15-4ac7-889a-58dba52fa28d:2:1; expires=Sun, 23 Apr 2034 17:50:04 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js

192.243.59.13

200 OK

12 kB

URL GET HTTP/1.1
instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, ASCII text, with very long lines (31313), with no line terminators
Size
12 kB (11844 bytes)
Hash
d8a8557ced21b5b8118a2ca48a32a24a
3332600bc275b22b26c978380aa8e91e3f58694f
f2bf0d3bc649d70b821faa187163c965d2c5c9862c967c4768d3bd3b7260f160

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ae333e82cfaead9ba22e64954c139352/invoke.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 17:50:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5a1db0b4785697e7b5ba92f9d3d3829f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.teamos.xyz/cdn-cgi/rum?

172.67.143.25

204 No Content

0 B

URL POST HTTP/3
www.teamos.xyz/cdn-cgi/rum?
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1041
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1; _ga_ZMK4J7B2XT=GS1.1.1714067405.1.0.1714067405.0.0.0; _ga=GA1.1.2121828744.1714067405
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Thu, 25 Apr 2024 17:50:05 GMT
access-control-allow-origin: https://www.teamos.xyz
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 87a02c639aec56a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff

honeyreadinesscentral.com/watch.172268322970.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2F&tz=0&dev=e&res=14.2071&uuid=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1

172.240.108.76

307 Temporary Redirect

0 B

URL GET HTTP/1.1
honeyreadinesscentral.com/watch.172268322970.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2F&tz=0&dev=e&res=14.2071&uuid=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjecthoneyreadinesscentral.com
Fingerprint1A:99:28:0A:D4:17:17:83:DE:BC:79:4F:7A:13:0A:36:0F:71:64:CF
ValidityTue, 23 Apr 2024 10:47:10 GMT - Mon, 22 Jul 2024 10:47:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.172268322970.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2F&tz=0&dev=e&res=14.2071&uuid=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1 HTTP/1.1
Host: honeyreadinesscentral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 17:50:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Location: https://honeyreadinesscentral.com/watch.172268322970.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1714067465&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=1a2b80999678b3095280f8f0792a80b3dc52b8b3127620512f992bd92d4c512a973be9dc6c625cbf4654b174dc8f90260b2abefa698a9c01426cf5567c7c6bf2d2be50fdb67eb23f4aac40e399cf6da8606c914fabae9aedcb0bde5eb703&tz=0&uuid=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1
Set-Cookie: u_pl=17155452; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.vK4tJsWTw5CV2VlEaDdK8WeL0wD9fKt6UhZ2fr9PJ1M; expires=Thu, 25 Apr 2024 17:51:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2226f8a0ce6bfabb868bf9eb8f4b46be
Strict-Transport-Security: max-age=0; includeSubdomains

honeyreadinesscentral.com/watch.172268322970.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1714067465&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=1a2b80999678b3095280f8f0792a80b3dc52b8b3127620512f992bd92d4c512a973be9dc6c625cbf4654b174dc8f90260b2abefa698a9c01426cf5567c7c6bf2d2be50fdb67eb23f4aac40e399cf6da8606c914fabae9aedcb0bde5eb703&tz=0&uuid=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1

172.240.108.76

200 OK

2.0 kB

URL GET HTTP/1.1
honeyreadinesscentral.com/watch.172268322970.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1714067465&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=1a2b80999678b3095280f8f0792a80b3dc52b8b3127620512f992bd92d4c512a973be9dc6c625cbf4654b174dc8f90260b2abefa698a9c01426cf5567c7c6bf2d2be50fdb67eb23f4aac40e399cf6da8606c914fabae9aedcb0bde5eb703&tz=0&uuid=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjecthoneyreadinesscentral.com
Fingerprint1A:99:28:0A:D4:17:17:83:DE:BC:79:4F:7A:13:0A:36:0F:71:64:CF
ValidityTue, 23 Apr 2024 10:47:10 GMT - Mon, 22 Jul 2024 10:47:09 GMT

File type
JavaScript source, ASCII text, with very long lines (2447)
Size
2.0 kB (1986 bytes)
Hash
d0656c8744c55b8249f068cb6455a2c9
6df89cd1c3bbd12bc1cb7b6752b4303f0670759e
f97a0ff38001e8cf5ecf39979d4fc6b31029fb823266f64143da578e04dc18fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.172268322970.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1714067465&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=1a2b80999678b3095280f8f0792a80b3dc52b8b3127620512f992bd92d4c512a973be9dc6c625cbf4654b174dc8f90260b2abefa698a9c01426cf5567c7c6bf2d2be50fdb67eb23f4aac40e399cf6da8606c914fabae9aedcb0bde5eb703&tz=0&uuid=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1 HTTP/1.1
Host: honeyreadinesscentral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17155452; ain=eyJhbGciOiJIUzI1NiJ9.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.vK4tJsWTw5CV2VlEaDdK8WeL0wD9fKt6UhZ2fr9PJ1M
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 17:50:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=c88210f3-af15-4ac7-889a-58dba52fa28d:2:1; expires=Thu, 02 May 2024 17:50:05 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
uncs=1; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
pdhtkv23=true; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
uncs23=1; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fc08b5dbcf63cae2ceddca2875eb6d43
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.cloudimagesb.com/cti/08/97/f5/0897f5fd97712cab162ea659e7ab93f0/1627917212.png

45.133.44.9

200 OK

45 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/08/97/f5/0897f5fd97712cab162ea659e7ab93f0/1627917212.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Size
45 kB (45371 bytes)
Hash
dbde2854f2a693ab43a1ee72cdf0c686
820bc6fb6d40db1cdc8b9a214d4a8b1138f2e3fa
aa648c4116a815deb4a006ed29f17342ccdb8c0d2ca863b54aa2517e1ed88641

HTTP Headers

GET /cti/08/97/f5/0897f5fd97712cab162ea659e7ab93f0/1627917212.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:05 GMT
content-type: image/png
content-length: 45371
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:13:41 GMT
etag: "61080ba5-b13b"
expires: Sat, 27 Apr 2024 17:50:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

briefaccusationaccess.com/ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4

172.240.108.68

200 OK

18 kB

URL GET HTTP/1.1
briefaccusationaccess.com/ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectbriefaccusationaccess.com
Fingerprint7F:98:2C:84:B7:1D:27:1E:BB:02:27:DA:90:DC:DC:BE:9E:F4:14:62
ValidityTue, 23 Apr 2024 09:10:43 GMT - Mon, 22 Jul 2024 09:10:42 GMT

File type
JSON text data
Size
18 kB (17719 bytes)
Hash
00dc12c00bd2cc12dac9a4ac410a32fd
340aa59d36417bc0f784e780f962e6a3bcb4a395
3e2a448890cfb5696d8e9e6c6b02691d3e5084122d583ac1dd596c8801732e05

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4 HTTP/1.1
Host: briefaccusationaccess.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 17:50:05 GMT
Content-Type: application/json
Content-Length: 17719
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17773605; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
uncs=1; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
pdhtkv49=true; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
uncs49=1; expires=Fri, 26 Apr 2024 17:50:05 GMT; secure; SameSite=None
nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991489,4991488]; expires=Thu, 25 Apr 2024 17:50:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 42ffa904a780446ba9a70823ec9603c0
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/cti/d2/a3/c2/d2a3c2349b7f908e89f1b1a4ced8ac27/1708430569.png

45.133.44.9

200 OK

123 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/d2/a3/c2/d2a3c2349b7f908e89f1b1a4ced8ac27/1708430569.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGB, non-interlaced
Size
123 kB (123229 bytes)
Hash
a3b552ad0ea88217daec6f780ac88cbe
0503df5ab5fe7e0011cd5398f3d6980ee68e53b1
e690d658d616d506f7502fa43f93f739826564dd1638661bb7cc8ec6c3b69450

HTTP Headers

GET /cti/d2/a3/c2/d2a3c2349b7f908e89f1b1a4ced8ac27/1708430569.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:05 GMT
content-type: image/png
content-length: 123229
server: nginx/1.21.6
last-modified: Tue, 20 Feb 2024 12:02:57 GMT
etag: "65d494f1-1e15d"
expires: Sat, 27 Apr 2024 17:50:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuDqMHBcWwt73MRdAgk%2B6eSU%2FGPYgxRoLjZt1V1ptUddVMalPd1VZ1T0%2FmFFyQPY4gip463yQbXBfRH%2BAinQWRoJC55WDwKHgUgkfpMTjug37vfe97Dd97rz7Zz86Jj4yerb%2BjR1IpurzScOsvfeB51%2BpdGWfD%2BnA1%2BDBoXaubwaudoOG%2BXH9LhDt62Xc91%2FVcr74hjejp4XJFQiYPO16j4zZafsNbaWFonsQ2c2CpAz44J4uQfFp77FyBDEvE0Xfrwu6kOnnlzShTNNUGA370frwT6zxGNE97xkEvPrrshranG4%2Bg48OZXOjBf41MTonz0yOw%2BOhSJNjgYKaTKYgYjD%2BLfFBCqBKSlgj1XUh%2BSoCQ4%2FoW4uj%2BdW1yuvsvSyt2SmoXf0HmU1L77Qri6Ns1JYf1W1plqdSxxbBXQA5LyH6JJDtGOlqAzI8Rph9D8l%2FJ8kUXcXSwZZWG5MVsdilLyF4JJcag1kFWfdJB1nOQJQ4iflYPPc9ruzyk7monDJu8LVjAXY%2B2ex713GAVWVjJGyNNxgjVGKHZQ2L2sCM%2FPV1ZhMl%2BhN0uYLkDm06J8%2B4eBrxALghyS5BTglwS5ClBPigOubK%2BLe5zZTPmXUb%2FMjaLiU77%2B%2FRQp30RE1AzhuHFfnJOXqhW5DzfehE74qzebvpBrxn4rOX1fBYwzpqrbcY7rteiorPCYGUBaRdmU4%2FklFy9%2BAiJnJKn%2FkjA6DGsOkYoF0EzDzQvQLcLjOIHqaCRto3h7ghcF0jSGtJdZ1%2Bdk6uzE3Xv3IYIT8ilITQFElPgjnxM0Ff3Jjd1Tg5u6tyS77eSVEZyRKvz3UppKp5%2B8LbYzbXhm%2Bt2%2FPXrYUVU6cP3hE27NOYy7lvyzZrkXJgNbUJBfti0twW7kdnttczEWdK98cbGZpQYYa3UcQkqT7f%2BRiin5Lk%2Ff5%2B9y6XPTyBNCZMViLK5UqlLhMkebDKvWU1g1ByzxEGeFRPjs3lRSQIl5piyAvZ%2FmM3ziaHV31QW%2B%2FYe%2BqYGmt5FHBUYmAIDVYCqMWz2zCRNzMlrP39Z2VdgqjZhytQOmDLqs9mSp6S7tFA5p3IEVlY3b7o06Kx47TYVbdbyV3uBxyn1W4EfBLSJ1E57S1%2F88g8AAAD%2F%2FwEAAP%2F%2FarRs2XsEAAA%3D

172.240.108.68

200 OK

7 B

URL GET HTTP/1.1
briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuDqMHBcWwt73MRdAgk%2B6eSU%2FGPYgxRoLjZt1V1ptUddVMalPd1VZ1T0%2FmFFyQPY4gip463yQbXBfRH%2BAinQWRoJC55WDwKHgUgkfpMTjug37vfe97Dd97rz7Zz86Jj4yerb%2BjR1IpurzScOsvfeB51%2BpdGWfD%2BnA1%2BDBoXaubwaudoOG%2BXH9LhDt62Xc91%2FVcr74hjejp4XJFQiYPO16j4zZafsNbaWFonsQ2c2CpAz44J4uQfFp77FyBDEvE0Xfrwu6kOnnlzShTNNUGA370frwT6zxGNE97xkEvPrrshranG4%2Bg48OZXOjBf41MTonz0yOw%2BOhSJNjgYKaTKYgYjD%2BLfFBCqBKSlgj1XUh%2BSoCQ4%2FoW4uj%2BdW1yuvsvSyt2SmoXf0HmU1L77Qri6Ns1JYf1W1plqdSxxbBXQA5LyH6JJDtGOlqAzI8Rph9D8l%2FJ8kUXcXSwZZWG5MVsdilLyF4JJcag1kFWfdJB1nOQJQ4iflYPPc9ruzyk7monDJu8LVjAXY%2B2ex713GAVWVjJGyNNxgjVGKHZQ2L2sCM%2FPV1ZhMl%2BhN0uYLkDm06J8%2B4eBrxALghyS5BTglwS5ClBPigOubK%2BLe5zZTPmXUb%2FMjaLiU77%2B%2FRQp30RE1AzhuHFfnJOXqhW5DzfehE74qzebvpBrxn4rOX1fBYwzpqrbcY7rteiorPCYGUBaRdmU4%2FklFy9%2BAiJnJKn%2FkjA6DGsOkYoF0EzDzQvQLcLjOIHqaCRto3h7ghcF0jSGtJdZ1%2Bdk6uzE3Xv3IYIT8ilITQFElPgjnxM0Ff3Jjd1Tg5u6tyS77eSVEZyRKvz3UppKp5%2B8LbYzbXhm%2Bt2%2FPXrYUVU6cP3hE27NOYy7lvyzZrkXJgNbUJBfti0twW7kdnttczEWdK98cbGZpQYYa3UcQkqT7f%2BRiin5Lk%2Ff5%2B9y6XPTyBNCZMViLK5UqlLhMkebDKvWU1g1ByzxEGeFRPjs3lRSQIl5piyAvZ%2FmM3ziaHV31QW%2B%2FYe%2BqYGmt5FHBUYmAIDVYCqMWz2zCRNzMlrP39Z2VdgqjZhytQOmDLqs9mSp6S7tFA5p3IEVlY3b7o06Kx47TYVbdbyV3uBxyn1W4EfBLSJ1E57S1%2F88g8AAAD%2F%2FwEAAP%2F%2FarRs2XsEAAA%3D
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectbriefaccusationaccess.com
Fingerprint7F:98:2C:84:B7:1D:27:1E:BB:02:27:DA:90:DC:DC:BE:9E:F4:14:62
ValidityTue, 23 Apr 2024 09:10:43 GMT - Mon, 22 Jul 2024 09:10:42 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuDqMHBcWwt73MRdAgk%2B6eSU%2FGPYgxRoLjZt1V1ptUddVMalPd1VZ1T0%2FmFFyQPY4gip463yQbXBfRH%2BAinQWRoJC55WDwKHgUgkfpMTjug37vfe97Dd97rz7Zz86Jj4yerb%2BjR1IpurzScOsvfeB51%2BpdGWfD%2BnA1%2BDBoXaubwaudoOG%2BXH9LhDt62Xc91%2FVcr74hjejp4XJFQiYPO16j4zZafsNbaWFonsQ2c2CpAz44J4uQfFp77FyBDEvE0Xfrwu6kOnnlzShTNNUGA370frwT6zxGNE97xkEvPrrshranG4%2Bg48OZXOjBf41MTonz0yOw%2BOhSJNjgYKaTKYgYjD%2BLfFBCqBKSlgj1XUh%2BSoCQ4%2FoW4uj%2BdW1yuvsvSyt2SmoXf0HmU1L77Qri6Ns1JYf1W1plqdSxxbBXQA5LyH6JJDtGOlqAzI8Rph9D8l%2FJ8kUXcXSwZZWG5MVsdilLyF4JJcag1kFWfdJB1nOQJQ4iflYPPc9ruzyk7monDJu8LVjAXY%2B2ex713GAVWVjJGyNNxgjVGKHZQ2L2sCM%2FPV1ZhMl%2BhN0uYLkDm06J8%2B4eBrxALghyS5BTglwS5ClBPigOubK%2BLe5zZTPmXUb%2FMjaLiU77%2B%2FRQp30RE1AzhuHFfnJOXqhW5DzfehE74qzebvpBrxn4rOX1fBYwzpqrbcY7rteiorPCYGUBaRdmU4%2FklFy9%2BAiJnJKn%2FkjA6DGsOkYoF0EzDzQvQLcLjOIHqaCRto3h7ghcF0jSGtJdZ1%2Bdk6uzE3Xv3IYIT8ilITQFElPgjnxM0Ff3Jjd1Tg5u6tyS77eSVEZyRKvz3UppKp5%2B8LbYzbXhm%2Bt2%2FPXrYUVU6cP3hE27NOYy7lvyzZrkXJgNbUJBfti0twW7kdnttczEWdK98cbGZpQYYa3UcQkqT7f%2BRiin5Lk%2Ff5%2B9y6XPTyBNCZMViLK5UqlLhMkebDKvWU1g1ByzxEGeFRPjs3lRSQIl5piyAvZ%2FmM3ziaHV31QW%2B%2FYe%2BqYGmt5FHBUYmAIDVYCqMWz2zCRNzMlrP39Z2VdgqjZhytQOmDLqs9mSp6S7tFA5p3IEVlY3b7o06Kx47TYVbdbyV3uBxyn1W4EfBLSJ1E57S1%2F88g8AAAD%2F%2FwEAAP%2F%2FarRs2XsEAAA%3D HTTP/1.1
Host: briefaccusationaccess.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991489,4991488]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 17:50:05 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aab68428ae6a998af7ed3c25068bc9e9
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png

45.133.44.9

200 OK

105 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
105 kB (104949 bytes)
Hash
440d0ebcc9ae01aba77f74d9015ff0b3
9065b873ac93b45da1765682071eaaf6efe12e5c
7834596c29b94d74435163b3875c5042082912c1aff529986b0235cd9b7b27cc

HTTP Headers

GET /si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:05 GMT
content-type: image/png
content-length: 104949
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:37 GMT
etag: "65f9577d-199f5"
expires: Sat, 27 Apr 2024 17:50:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png

45.133.44.9

200 OK

120 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
120 kB (119965 bytes)
Hash
c5a83c3079df6439410f74f3e8de6930
66dab231922cc92db7c41f49d7bdb7da1dfde08a
ee0745b5678c7e4277047ba8f87d53ee77e60a4985dace65c73b970521dbf1f8

HTTP Headers

GET /si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:05 GMT
content-type: image/png
content-length: 119965
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:15 GMT
etag: "65f95767-1d49d"
expires: Sat, 27 Apr 2024 17:50:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png

45.133.44.9

200 OK

184 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
184 kB (183812 bytes)
Hash
adc709f858c8b4ff4ce26a2757b75131
c91b170aba4aafdca5690d29e17f61b6505e15c1
ad475e95022da6d65aec3479ad3b4ff6d36dc85bbc634d750cdd575ea1a985ce

HTTP Headers

GET /si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:05 GMT
content-type: image/png
content-length: 183812
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 19:50:20 GMT
etag: "65cd197c-2ce04"
expires: Sat, 27 Apr 2024 17:50:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzm9%2BFwXFZW97mYugQSbdPZOejHtYjDFLcNysu8p6k6qunkltqrvaqq7pyQgSXJA9yQiC6KnzTbLBdVn0D3CRyYJIUEjfctiAN%2B9CztJjcPRBv%2Fe%2B972G771Xn%2B3ZM%2BLD0tO1d9RISEmXlhtu%2FZUPPO9qvSsSO6wPV4IPg9bVuh683gka7qv161G4rZZ813Ndz%2FXq60JHPTVcqkiI9FHHa3TcRstveMstDPV%2FsbEODHXAB2fkEgQva0%2BdyxDhFEn8%2FVpktjOVvvZWbCXNlMaAH76fbCcqTxDP05520EsOL7qhzMn6E6jkYCYXavBPIxMlcX5%2BApYcXogEG%2BzPdDKJKAHjzyMfTBHJKQSdIlT3IPgJAUKOG5tI4gc3lM7pzt8srdiS1M7%2FhMhLUnt2GUn8eFWKYf22kjYTKjEY9gqI4RSiP0Vqj5CNFiDyI4TZpxD8N7J03kUS728aqSB4MZtdiClEbwoZjUGNA1t9woHtObCpg5if1kPP89ouD6m70gnDJm9HLOCuR9s9j3pusAIbVvLGyNIxQjlGqHeR6l1siy9Oli9B259gtgoY7sBkJXHe3cWAF8gjgtwQ5JQgFwR5RpAPigMujW%2BKB1way7yL6F%2FEZjFRWX%2BPHqisHyUEVI%2BhebGXnpGXqhU5L7ZexnZ0Wm83%2FaDXDHzW8no%2BCxhnzZU24x3Xa9Gos8xgRAFhFmZTj0RJrpx%2FhFSU5P9%2FpGD0CEYeIRSXQK0HmhegWwVGycMsorEyjeHOCFwVSLMash1nT56RK7MTdRcXEIXH17LR79cfX%2F4YoS6Q6gJ3xVOCvrw%2FuaVysn9L5Yb8sJlmIhYjWp3vdkaz6H8P3452cqX5xpoZf%2FtGWBFV%2Bui9yGRdmnCR9A35blVwHul1pcOI%2FLhh7kTspjVbq1YnNu3efHN9I051ZIxQyRRUlKR2vINQlOSFZ5%2FMXuai%2FRxCT6FtgdgekwuDUEcI012YdF4zikDLOWbpAnJbTLTP5kUpCGQ0x5QVMP%2FCbJ5PNK3%2BpqLYM%2FfR1zXQ7B6SuMBAFxjIAlSOYexzkyzVx9d%2B%2Bbqyb8BkbcKkru0zqeWXJenevTPbdeWcyhEYUV296dKgs%2By12zRqs5a%2F0gs8TqnfCvwgoE1kpuwtfvXrXwAAAP%2F%2FAQAA%2F%2F9vWJl0fQQAAA%3D%3D

172.240.108.68

200 OK

7 B

URL GET HTTP/1.1
briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzm9%2BFwXFZW97mYugQSbdPZOejHtYjDFLcNysu8p6k6qunkltqrvaqq7pyQgSXJA9yQiC6KnzTbLBdVn0D3CRyYJIUEjfctiAN%2B9CztJjcPRBv%2Fe%2B972G771Xn%2B3ZM%2BLD0tO1d9RISEmXlhtu%2FZUPPO9qvSsSO6wPV4IPg9bVuh683gka7qv161G4rZZ813Ndz%2FXq60JHPTVcqkiI9FHHa3TcRstveMstDPV%2FsbEODHXAB2fkEgQva0%2BdyxDhFEn8%2FVpktjOVvvZWbCXNlMaAH76fbCcqTxDP05520EsOL7qhzMn6E6jkYCYXavBPIxMlcX5%2BApYcXogEG%2BzPdDKJKAHjzyMfTBHJKQSdIlT3IPgJAUKOG5tI4gc3lM7pzt8srdiS1M7%2FhMhLUnt2GUn8eFWKYf22kjYTKjEY9gqI4RSiP0Vqj5CNFiDyI4TZpxD8N7J03kUS728aqSB4MZtdiClEbwoZjUGNA1t9woHtObCpg5if1kPP89ouD6m70gnDJm9HLOCuR9s9j3pusAIbVvLGyNIxQjlGqHeR6l1siy9Oli9B259gtgoY7sBkJXHe3cWAF8gjgtwQ5JQgFwR5RpAPigMujW%2BKB1way7yL6F%2FEZjFRWX%2BPHqisHyUEVI%2BhebGXnpGXqhU5L7ZexnZ0Wm83%2FaDXDHzW8no%2BCxhnzZU24x3Xa9Gos8xgRAFhFmZTj0RJrpx%2FhFSU5P9%2FpGD0CEYeIRSXQK0HmhegWwVGycMsorEyjeHOCFwVSLMash1nT56RK7MTdRcXEIXH17LR79cfX%2F4YoS6Q6gJ3xVOCvrw%2FuaVysn9L5Yb8sJlmIhYjWp3vdkaz6H8P3452cqX5xpoZf%2FtGWBFV%2Bui9yGRdmnCR9A35blVwHul1pcOI%2FLhh7kTspjVbq1YnNu3efHN9I051ZIxQyRRUlKR2vINQlOSFZ5%2FMXuai%2FRxCT6FtgdgekwuDUEcI012YdF4zikDLOWbpAnJbTLTP5kUpCGQ0x5QVMP%2FCbJ5PNK3%2BpqLYM%2FfR1zXQ7B6SuMBAFxjIAlSOYexzkyzVx9d%2B%2Bbqyb8BkbcKkru0zqeWXJenevTPbdeWcyhEYUV296dKgs%2By12zRqs5a%2F0gs8TqnfCvwgoE1kpuwtfvXrXwAAAP%2F%2FAQAA%2F%2F9vWJl0fQQAAA%3D%3D
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectbriefaccusationaccess.com
Fingerprint7F:98:2C:84:B7:1D:27:1E:BB:02:27:DA:90:DC:DC:BE:9E:F4:14:62
ValidityTue, 23 Apr 2024 09:10:43 GMT - Mon, 22 Jul 2024 09:10:42 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzm9%2BFwXFZW97mYugQSbdPZOejHtYjDFLcNysu8p6k6qunkltqrvaqq7pyQgSXJA9yQiC6KnzTbLBdVn0D3CRyYJIUEjfctiAN%2B9CztJjcPRBv%2Fe%2B972G771Xn%2B3ZM%2BLD0tO1d9RISEmXlhtu%2FZUPPO9qvSsSO6wPV4IPg9bVuh683gka7qv161G4rZZ813Ndz%2FXq60JHPTVcqkiI9FHHa3TcRstveMstDPV%2FsbEODHXAB2fkEgQva0%2BdyxDhFEn8%2FVpktjOVvvZWbCXNlMaAH76fbCcqTxDP05520EsOL7qhzMn6E6jkYCYXavBPIxMlcX5%2BApYcXogEG%2BzPdDKJKAHjzyMfTBHJKQSdIlT3IPgJAUKOG5tI4gc3lM7pzt8srdiS1M7%2FhMhLUnt2GUn8eFWKYf22kjYTKjEY9gqI4RSiP0Vqj5CNFiDyI4TZpxD8N7J03kUS728aqSB4MZtdiClEbwoZjUGNA1t9woHtObCpg5if1kPP89ouD6m70gnDJm9HLOCuR9s9j3pusAIbVvLGyNIxQjlGqHeR6l1siy9Oli9B259gtgoY7sBkJXHe3cWAF8gjgtwQ5JQgFwR5RpAPigMujW%2BKB1way7yL6F%2FEZjFRWX%2BPHqisHyUEVI%2BhebGXnpGXqhU5L7ZexnZ0Wm83%2FaDXDHzW8no%2BCxhnzZU24x3Xa9Gos8xgRAFhFmZTj0RJrpx%2FhFSU5P9%2FpGD0CEYeIRSXQK0HmhegWwVGycMsorEyjeHOCFwVSLMash1nT56RK7MTdRcXEIXH17LR79cfX%2F4YoS6Q6gJ3xVOCvrw%2FuaVysn9L5Yb8sJlmIhYjWp3vdkaz6H8P3452cqX5xpoZf%2FtGWBFV%2Bui9yGRdmnCR9A35blVwHul1pcOI%2FLhh7kTspjVbq1YnNu3efHN9I051ZIxQyRRUlKR2vINQlOSFZ5%2FMXuai%2FRxCT6FtgdgekwuDUEcI012YdF4zikDLOWbpAnJbTLTP5kUpCGQ0x5QVMP%2FCbJ5PNK3%2BpqLYM%2FfR1zXQ7B6SuMBAFxjIAlSOYexzkyzVx9d%2B%2Bbqyb8BkbcKkru0zqeWXJenevTPbdeWcyhEYUV296dKgs%2By12zRqs5a%2F0gs8TqnfCvwgoE1kpuwtfvXrXwAAAP%2F%2FAQAA%2F%2F9vWJl0fQQAAA%3D%3D HTTP/1.1
Host: briefaccusationaccess.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991489,4991488]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 17:50:05 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1c221b2a2f4a37fa3507ffa6b4be173e
Strict-Transport-Security: max-age=0; includeSubdomains

briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLguKyt73MRdAgk%2B6eSU%2FGPSzGmCU4btZdZb1JVVfPpDbVXW1V1%2FRkBAkuyB48jCCInjrfJBtcl0V%2FgItMFkSCQvqWwwa8eRdylp4Njj7ofu%2FV9wq%2B9331xa49JT4sPVl9T42ElHRxqeHWX%2FvI867UuyKxw%2FpwOfg4aF2p68GbnaDhvl6%2FFoVbatF3Pdf1XK%2B%2BJnTUU8PFCoRIH3a8RsdttPyGt9TCUP%2B%2FN9aBoQ744JRchOBl7YlzCSKcIol%2FXI3MVqbSN96JraSZ0hjwgw%2BTrUTlCeJ52dMOesnB%2BTSUOV57DJXsz%2BhCDf4dZKIkzq%2BPwZKDc5Jgg70ZTyYRJWD8ReSDKSI5haBThOouBD8mQMhxfQNJfP%2B60jndfobSCi1J7exviLwktaeXkMSPVqQY1m8paTOhEoNhr4AYTiH6U6T2ENnoAkR%2BiDD7HIL%2FQRbPukjivQ0jFQQvZrsLMYXoTSGjMahxYKtPOLA9BzZ1EPOTeuh5XtvlIXWXO2HY5O2IBdz1aLvnUc8NlmHDit4YWTpGKMcI9Q5SvYMt8dXx0kVo%2BwvMZgHDHZisJM77OxjwAnlEkBuCnBLkgiDPCPJBsc%2Bl8U1xn0tjmXee%2FfPcLCYq6%2B%2FSfZX1o4SA6jE0L3bTU%2FJKJZHzcutVbEUn9XbTD3rNwGctr%2BezgHHWXG4z3nG9Fo06SwxGFBDmwmzrkSjJ5bNPkIqSPP9XCkYPYeQhQnER1HqgeQG6WWCUPMgiGivTGG6PwFWBNKsh23Z25Sm5PLOou0AQhUdXs9Gf1x5d%2BhShLpDqAnfEE4K%2BvDe5qXKyd1Plhvy0kWYiFiNa2Xcro1n03IN3o%2B1cab6%2BasbfvxVWQFU%2B%2FCAyWZcmXCR9Q35YEZxHek3pMCI%2Fr5vbEbthzeaK1YlNuzfeXluPUx0ZI1QyBRUlqR1tIxQleenpZ7OXuWC%2FhNBTaFsgtkfkPCDUIcJ0Byad8zeKQMv5DEtryG0x0T6bH0pBIKN5T1kB85%2BezeuJptVtKopdcw99XQPN7iKJCwx0gYEsQOUYxr4wyVJ9dPW3b6v4DkzWJkzq2h6TWn5dku6d25XWF6qf80x1IyrXmy4NOkteu02jNmv5y73A45T6rcAPAtpEZsrewje%2F%2FwMAAP%2F%2FAQAA%2F%2F%2FK7BOOfQQAAA%3D%3D

192.243.59.13

200 OK

7 B

URL GET HTTP/1.1
briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLguKyt73MRdAgk%2B6eSU%2FGPSzGmCU4btZdZb1JVVfPpDbVXW1V1%2FRkBAkuyB48jCCInjrfJBtcl0V%2FgItMFkSCQvqWwwa8eRdylp4Njj7ofu%2FV9wq%2B9331xa49JT4sPVl9T42ElHRxqeHWX%2FvI867UuyKxw%2FpwOfg4aF2p68GbnaDhvl6%2FFoVbatF3Pdf1XK%2B%2BJnTUU8PFCoRIH3a8RsdttPyGt9TCUP%2B%2FN9aBoQ744JRchOBl7YlzCSKcIol%2FXI3MVqbSN96JraSZ0hjwgw%2BTrUTlCeJ52dMOesnB%2BTSUOV57DJXsz%2BhCDf4dZKIkzq%2BPwZKDc5Jgg70ZTyYRJWD8ReSDKSI5haBThOouBD8mQMhxfQNJfP%2B60jndfobSCi1J7exviLwktaeXkMSPVqQY1m8paTOhEoNhr4AYTiH6U6T2ENnoAkR%2BiDD7HIL%2FQRbPukjivQ0jFQQvZrsLMYXoTSGjMahxYKtPOLA9BzZ1EPOTeuh5XtvlIXWXO2HY5O2IBdz1aLvnUc8NlmHDit4YWTpGKMcI9Q5SvYMt8dXx0kVo%2BwvMZgHDHZisJM77OxjwAnlEkBuCnBLkgiDPCPJBsc%2Bl8U1xn0tjmXee%2FfPcLCYq6%2B%2FSfZX1o4SA6jE0L3bTU%2FJKJZHzcutVbEUn9XbTD3rNwGctr%2BezgHHWXG4z3nG9Fo06SwxGFBDmwmzrkSjJ5bNPkIqSPP9XCkYPYeQhQnER1HqgeQG6WWCUPMgiGivTGG6PwFWBNKsh23Z25Sm5PLOou0AQhUdXs9Gf1x5d%2BhShLpDqAnfEE4K%2BvDe5qXKyd1Plhvy0kWYiFiNa2Xcro1n03IN3o%2B1cab6%2BasbfvxVWQFU%2B%2FCAyWZcmXCR9Q35YEZxHek3pMCI%2Fr5vbEbthzeaK1YlNuzfeXluPUx0ZI1QyBRUlqR1tIxQleenpZ7OXuWC%2FhNBTaFsgtkfkPCDUIcJ0Byad8zeKQMv5DEtryG0x0T6bH0pBIKN5T1kB85%2BezeuJptVtKopdcw99XQPN7iKJCwx0gYEsQOUYxr4wyVJ9dPW3b6v4DkzWJkzq2h6TWn5dku6d25XWF6qf80x1IyrXmy4NOkteu02jNmv5y73A45T6rcAPAtpEZsrewje%2F%2FwMAAP%2F%2FAQAA%2F%2F%2FK7BOOfQQAAA%3D%3D
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectbriefaccusationaccess.com
Fingerprint7F:98:2C:84:B7:1D:27:1E:BB:02:27:DA:90:DC:DC:BE:9E:F4:14:62
ValidityTue, 23 Apr 2024 09:10:43 GMT - Mon, 22 Jul 2024 09:10:42 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLguKyt73MRdAgk%2B6eSU%2FGPSzGmCU4btZdZb1JVVfPpDbVXW1V1%2FRkBAkuyB48jCCInjrfJBtcl0V%2FgItMFkSCQvqWwwa8eRdylp4Njj7ofu%2FV9wq%2B9331xa49JT4sPVl9T42ElHRxqeHWX%2FvI867UuyKxw%2FpwOfg4aF2p68GbnaDhvl6%2FFoVbatF3Pdf1XK%2B%2BJnTUU8PFCoRIH3a8RsdttPyGt9TCUP%2B%2FN9aBoQ744JRchOBl7YlzCSKcIol%2FXI3MVqbSN96JraSZ0hjwgw%2BTrUTlCeJ52dMOesnB%2BTSUOV57DJXsz%2BhCDf4dZKIkzq%2BPwZKDc5Jgg70ZTyYRJWD8ReSDKSI5haBThOouBD8mQMhxfQNJfP%2B60jndfobSCi1J7exviLwktaeXkMSPVqQY1m8paTOhEoNhr4AYTiH6U6T2ENnoAkR%2BiDD7HIL%2FQRbPukjivQ0jFQQvZrsLMYXoTSGjMahxYKtPOLA9BzZ1EPOTeuh5XtvlIXWXO2HY5O2IBdz1aLvnUc8NlmHDit4YWTpGKMcI9Q5SvYMt8dXx0kVo%2BwvMZgHDHZisJM77OxjwAnlEkBuCnBLkgiDPCPJBsc%2Bl8U1xn0tjmXee%2FfPcLCYq6%2B%2FSfZX1o4SA6jE0L3bTU%2FJKJZHzcutVbEUn9XbTD3rNwGctr%2BezgHHWXG4z3nG9Fo06SwxGFBDmwmzrkSjJ5bNPkIqSPP9XCkYPYeQhQnER1HqgeQG6WWCUPMgiGivTGG6PwFWBNKsh23Z25Sm5PLOou0AQhUdXs9Gf1x5d%2BhShLpDqAnfEE4K%2BvDe5qXKyd1Plhvy0kWYiFiNa2Xcro1n03IN3o%2B1cab6%2BasbfvxVWQFU%2B%2FCAyWZcmXCR9Q35YEZxHek3pMCI%2Fr5vbEbthzeaK1YlNuzfeXluPUx0ZI1QyBRUlqR1tIxQleenpZ7OXuWC%2FhNBTaFsgtkfkPCDUIcJ0Byad8zeKQMv5DEtryG0x0T6bH0pBIKN5T1kB85%2BezeuJptVtKopdcw99XQPN7iKJCwx0gYEsQOUYxr4wyVJ9dPW3b6v4DkzWJkzq2h6TWn5dku6d25XWF6qf80x1IyrXmy4NOkteu02jNmv5y73A45T6rcAPAtpEZsrewje%2F%2FwMAAP%2F%2FAQAA%2F%2F%2FK7BOOfQQAAA%3D%3D HTTP/1.1
Host: briefaccusationaccess.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991489,4991488]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 17:50:06 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 50b7d77fd63e977c0514d0efd6a95d65
Strict-Transport-Security: max-age=0; includeSubdomains

briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3h0vCorL3vYyF0GDTLp7Jj0Z97AYY5bguFl3lfUmVV09k9pUd7VVXdOTESS4IHsRRhBET51vkg2uy6I%2FwEUmCyJBIX3LYQPevAs5S4%2FB0Qfd7736XsH3vq8%2B37WnxIelJ6vvqpGQki4uNdz6qx963tV6VyR2WB8uBx8Frat1PXijEzTc1%2BrXo3BLLfqu57qe69XXhI56arhYgRDpo47X6LiNlt%2FwlloY6v%2F3xjow1AEfnJJLELysPXUuQ4RTJPEPq5HZylT6%2BtuxlTRTGgN%2B8EGylag8QTwve9pBLzk4n4Yyx2tPoJL9GV2owb%2BDTJTE%2BeUJWHJwThJssDfjySSiBIy%2FgHwwRSSnEHSKUN2D4McECDlubCCJH9xQOqfb%2F6C0QktSO%2FsLIi9J7dllJPHjFSmG9dtK2kyoxGDYKyCGU4j%2BFKk9RDa6AJEfIsw%2Bg%2BC%2Fk8WzLpJ4b8NIBcGL2e5CTCF6U8hoDGoc2OoTDmzPgU0dxPykHnqe13Z5SN3lThg2eTtiAXc92u551HODZdiwojdGlo4RyjFCvYNU72BLfHm8dAna%2FgyzWcBwByYrifPeDga8QB4R5IYgpwS5IMgzgnxQ7HNpfFM84NJY5p1n%2Fzw3i4nK%2Brt0X2X9KCGgegzNi930lLxcSeS81HoFW9FJvd30g14z8FnL6%2FksYJw1l9uMd1yvRaPOEoMRBYS5MNt6JEpy5exjpKIkz%2F2ZgtFDGHmIUFwCtR5oXoBuFhglD7OIxso0htsjcFUgzWrItp1deUquzCzqLjiIwqNr2eiP648vf4JQF0h1gbviKUFf3p%2FcUjnZu6VyQ37cSDMRixGt7Lud0Sy6%2BPCdaDtXmq%2BvmvF3b4YVUJWP3o9M1qUJF0nfkO9XBOeRXlM6jMhP6%2BZOxG5as7lidWLT7s231tbjVEfGCJVMQUVJakfbCEVJXnz26exlLtgvIPQU2haI7RE5Dwh1iDDdgUnn%2FI0i0HI%2Bw9KLyG0x0T6bH0pBIKN5T1kB85%2BezeuJptVtKopdcx99XQPN7iGJCwx0gYEsQOUYxj4%2FyVJ9dO3Xb6r4FkzWJkzq2h6TWn5Vku7dO5XWF2aCVz8CIyrXmy4NOkteu02jNmv5y73A45T6rcAPAtpEZsrewte%2F%2FQ0AAP%2F%2FAQAA%2F%2F%2FQI%2B7nfQQAAA%3D%3D

192.243.59.13

200 OK

7 B

URL GET HTTP/1.1
briefaccusationaccess.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3h0vCorL3vYyF0GDTLp7Jj0Z97AYY5bguFl3lfUmVV09k9pUd7VVXdOTESS4IHsRRhBET51vkg2uy6I%2FwEUmCyJBIX3LYQPevAs5S4%2FB0Qfd7736XsH3vq8%2B37WnxIelJ6vvqpGQki4uNdz6qx963tV6VyR2WB8uBx8Frat1PXijEzTc1%2BrXo3BLLfqu57qe69XXhI56arhYgRDpo47X6LiNlt%2FwlloY6v%2F3xjow1AEfnJJLELysPXUuQ4RTJPEPq5HZylT6%2BtuxlTRTGgN%2B8EGylag8QTwve9pBLzk4n4Yyx2tPoJL9GV2owb%2BDTJTE%2BeUJWHJwThJssDfjySSiBIy%2FgHwwRSSnEHSKUN2D4McECDlubCCJH9xQOqfb%2F6C0QktSO%2FsLIi9J7dllJPHjFSmG9dtK2kyoxGDYKyCGU4j%2BFKk9RDa6AJEfIsw%2Bg%2BC%2Fk8WzLpJ4b8NIBcGL2e5CTCF6U8hoDGoc2OoTDmzPgU0dxPykHnqe13Z5SN3lThg2eTtiAXc92u551HODZdiwojdGlo4RyjFCvYNU72BLfHm8dAna%2FgyzWcBwByYrifPeDga8QB4R5IYgpwS5IMgzgnxQ7HNpfFM84NJY5p1n%2Fzw3i4nK%2Brt0X2X9KCGgegzNi930lLxcSeS81HoFW9FJvd30g14z8FnL6%2FksYJw1l9uMd1yvRaPOEoMRBYS5MNt6JEpy5exjpKIkz%2F2ZgtFDGHmIUFwCtR5oXoBuFhglD7OIxso0htsjcFUgzWrItp1deUquzCzqLjiIwqNr2eiP648vf4JQF0h1gbviKUFf3p%2FcUjnZu6VyQ37cSDMRixGt7Lud0Sy6%2BPCdaDtXmq%2BvmvF3b4YVUJWP3o9M1qUJF0nfkO9XBOeRXlM6jMhP6%2BZOxG5as7lidWLT7s231tbjVEfGCJVMQUVJakfbCEVJXnz26exlLtgvIPQU2haI7RE5Dwh1iDDdgUnn%2FI0i0HI%2Bw9KLyG0x0T6bH0pBIKN5T1kB85%2BezeuJptVtKopdcx99XQPN7iGJCwx0gYEsQOUYxj4%2FyVJ9dO3Xb6r4FkzWJkzq2h6TWn5Vku7dO5XWF2aCVz8CIyrXmy4NOkteu02jNmv5y73A45T6rcAPAtpEZsrewte%2F%2FQ0AAP%2F%2FAQAA%2F%2F%2FQI%2B7nfQQAAA%3D%3D
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectbriefaccusationaccess.com
Fingerprint7F:98:2C:84:B7:1D:27:1E:BB:02:27:DA:90:DC:DC:BE:9E:F4:14:62
ValidityTue, 23 Apr 2024 09:10:43 GMT - Mon, 22 Jul 2024 09:10:42 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3h0vCorL3vYyF0GDTLp7Jj0Z97AYY5bguFl3lfUmVV09k9pUd7VVXdOTESS4IHsRRhBET51vkg2uy6I%2FwEUmCyJBIX3LYQPevAs5S4%2FB0Qfd7736XsH3vq8%2B37WnxIelJ6vvqpGQki4uNdz6qx963tV6VyR2WB8uBx8Frat1PXijEzTc1%2BrXo3BLLfqu57qe69XXhI56arhYgRDpo47X6LiNlt%2FwlloY6v%2F3xjow1AEfnJJLELysPXUuQ4RTJPEPq5HZylT6%2BtuxlTRTGgN%2B8EGylag8QTwve9pBLzk4n4Yyx2tPoJL9GV2owb%2BDTJTE%2BeUJWHJwThJssDfjySSiBIy%2FgHwwRSSnEHSKUN2D4McECDlubCCJH9xQOqfb%2F6C0QktSO%2FsLIi9J7dllJPHjFSmG9dtK2kyoxGDYKyCGU4j%2BFKk9RDa6AJEfIsw%2Bg%2BC%2Fk8WzLpJ4b8NIBcGL2e5CTCF6U8hoDGoc2OoTDmzPgU0dxPykHnqe13Z5SN3lThg2eTtiAXc92u551HODZdiwojdGlo4RyjFCvYNU72BLfHm8dAna%2FgyzWcBwByYrifPeDga8QB4R5IYgpwS5IMgzgnxQ7HNpfFM84NJY5p1n%2Fzw3i4nK%2Brt0X2X9KCGgegzNi930lLxcSeS81HoFW9FJvd30g14z8FnL6%2FksYJw1l9uMd1yvRaPOEoMRBYS5MNt6JEpy5exjpKIkz%2F2ZgtFDGHmIUFwCtR5oXoBuFhglD7OIxso0htsjcFUgzWrItp1deUquzCzqLjiIwqNr2eiP648vf4JQF0h1gbviKUFf3p%2FcUjnZu6VyQ37cSDMRixGt7Lud0Sy6%2BPCdaDtXmq%2BvmvF3b4YVUJWP3o9M1qUJF0nfkO9XBOeRXlM6jMhP6%2BZOxG5as7lidWLT7s231tbjVEfGCJVMQUVJakfbCEVJXnz26exlLtgvIPQU2haI7RE5Dwh1iDDdgUnn%2FI0i0HI%2Bw9KLyG0x0T6bH0pBIKN5T1kB85%2BezeuJptVtKopdcx99XQPN7iGJCwx0gYEsQOUYxj4%2FyVJ9dO3Xb6r4FkzWJkzq2h6TWn5Vku7dO5XWF2aCVz8CIyrXmy4NOkteu02jNmv5y73A45T6rcAPAtpEZsrewte%2F%2FQ0AAP%2F%2FAQAA%2F%2F%2FQI%2B7nfQQAAA%3D%3D HTTP/1.1
Host: briefaccusationaccess.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991489,4991488]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 17:50:06 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4df41e73af701120ea538e68066b7988
Strict-Transport-Security: max-age=0; includeSubdomains

www.teamos.xyz/cdn-cgi/rum?

172.67.143.25

204 No Content

0 B

URL POST HTTP/3
www.teamos.xyz/cdn-cgi/rum?
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 454
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c88210f3-af15-4ac7-889a-58dba52fa28d%3A2%3A1; _ga_ZMK4J7B2XT=GS1.1.1714067405.1.0.1714067405.0.0.0; _ga=GA1.1.2121828744.1714067405; pp_main_a1e8916f3df739635783bc00fa07bfe6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Thu, 25 Apr 2024 17:50:27 GMT
access-control-allow-origin: https://www.teamos.xyz
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 87a02cf09f2556a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff

teamos.xyz/

172.67.143.25

301 Moved Permanently

174 kB

URL User Request GET HTTP/3
teamos.xyz/
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
174 kB (173827 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 301 Moved Permanently
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: text/html
location: https://www.teamos.xyz/
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KZxWXxnDU3uZntbdmcM7cRCP25An7SxkF5Ii5xmGKgQCJUfFDKndq1BBfJ%2FBHwp4Y4fezZ0ueivv3IwE9S8cKQ91zxCnLX7Jl1s%2BRa463C3si3z6A0qXbDWZ4irr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c55fbdb56a2-OSL
alt-svc: h3=":443"; ma=86400

my.teamos.xyz/00130da181023a42eea8f7a806ed9f1c/announce7:comment39:Downloaded

172.67.143.25

302 Found

174 kB

URL User Request GET HTTP/2
my.teamos.xyz/00130da181023a42eea8f7a806ed9f1c/announce7:comment39:Downloaded
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
174 kB (173827 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /00130da181023a42eea8f7a806ed9f1c/announce7:comment39:Downloaded HTTP/1.1
Host: my.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 25 Apr 2024 17:50:02 GMT
location: https://teamos.xyz
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3t5S7LmMKf9xfujiJHNmsmGOaFxh%2Fg8cLEK551WdXX6YcYrsUWyXK19L%2BSSZ8i5q5NRz%2BAbR6as7Be65QNJO9uLpP6mnDNVwxjxArkBAeTCOUSeP57UQvIBDlGP%2BzRvi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c53bc647131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

downstairsnegotiatebarren.com/sfp.js

188.114.97.1

200 OK

86 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type

Size
86 kB (85611 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:50:05 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: e94c8fe4271077b8107b31c920b7e824
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: STALE
age: 1
last-modified: Thu, 25 Apr 2024 17:50:04 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZwWJZR5f%2Bh486VE%2Bxw0uz0nxnOg7aYMknpsLOqrvM78bzMPhOcsDUmDRiZawXoChIqTPOeH7MIM%2F1bSgKvY6iKW53plXtW8ZGl5%2F%2B%2FKR8lNi4gP%2Bj8d%2FDeVe9Gtm6IvLgayKd0Q%2Bc718uw9RGJRKjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c60b933b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e

172.67.143.25

200 OK

3.4 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (3549), with no line terminators
Size
3.4 kB (3379 bytes)
Hash
cb73021081c1542f2179421a07600c5f
3e1a9cfbcceabb20985ad1d294754a0cda74defe
497c070b11794ae6950d47f244ac42c4669cb9b4126162ad7417ea970a21da3b

HTTP Headers

GET /js/xf/preamble.min.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:04 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
vary: Accept-Encoding
etag: W/"63926c70-d33"
expires: Fri, 26 Apr 2024 08:41:08 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 549370
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FatVID7cY9b36ZtXctSxDwRMfG6%2Bkec%2BOX3DkCrnVCRcWQOD0%2B94hQEiO9xYo%2FbAEjSh%2BTGVTOcJZ7dasfcd%2FMMmzmKBEtwJ6%2BDO5h9PCn8ylWcx8nRmGBiop4JA35y86w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c5af99356a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:35:00 GMT
expires: Fri, 25 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 54904
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/

172.67.143.25

200 OK

174 kB

URL User Request GET HTTP/3
www.teamos.xyz/
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type

Size
174 kB (173827 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 25 Apr 2024 17:50:03 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: private, no-cache, max-age=0
vary: Accept-Encoding
set-cookie: xf_csrf=ICUoZHdJ17170feb; path=/; secure
xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8; path=/; secure; HttpOnly
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dtSC%2BkFbKcJ%2FQpUMIuQJyOVlzbcI0FAvB8FeOIv5X5gDGouID8wWzRSu2WukmomtFsK2RQ6Nlb1ct3eSZjEXZz99ZcfViFdmkB6GIfFaSm4t1lkvodvV8BxHMAaU1nqp6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c56dcc656a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Open+Sans:400,700

142.250.74.106

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1572)
Size
11 kB (11194 bytes)
Hash
b69c29c8c917c014d6f4b79752d8ce0b
71a580b2e8792ba930815bcca3bda73e7715ca3f
5cccc465f4c8cdcec789a0b28846823f18646206351bc9ff794f1aec7f58f5b0

HTTP Headers

GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 17:50:03 GMT
date: Thu, 25 Apr 2024 17:50:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714033847&k=034405c740f279c15adbbc41dfccb627ca90db04

172.67.143.25

200 OK

397 kB

URL GET HTTP/3
www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714033847&k=034405c740f279c15adbbc41dfccb627ca90db04
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
ASCII text, with very long lines (63233)
Size
397 kB (396762 bytes)
Hash
ca8b60ddaf8efe6e6e2c8238947a2a20
7efd8f6ce98cf1dbe6f55729d7be5eea309846a4
86d0e326cd98c5c555669c9d8621176c085ca0646bb10479a4a8e1e8244b96e5

HTTP Headers

GET /css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1714033847&k=034405c740f279c15adbbc41dfccb627ca90db04 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: text/css; charset=utf-8
x-frame-options: SAMEORIGIN
expires: Fri, 25 Apr 2025 17:50:03 GMT
last-modified: Thu, 25 Apr 2024 08:30:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=shTnjjc7JoZoe6yoZKLDHU9yGy8V599yWoyaoYuOOXkzRy5BoOFTdOtFBlc08fRnLHKWwIbaD%2FKUY%2Bou5dGjixF8iB9XiICtoV%2FUy17EU3E4t%2BHIBQFG3M0v0COGMTqR9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c594f9b56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:35:00 GMT
expires: Fri, 25 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 54904
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

172.67.143.25

200 OK

12 kB

URL GET HTTP/3
www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MmfQWkJd0fpwUnyFGm6DlfROTKSO7tff8Egd3C5adh%2B8ERZhXV1e63GYLhQH7ZiCD8Fr%2Bn7TvPlmDhDjTUn7xJEH38IdzHAqxRbBSflOHDCMNUE3oyzBf15cM3YHTdTaYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a02c595fb456a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 27 Apr 2024 17:50:03 GMT
cache-control: max-age=172800, public
content-encoding: gzip

www.teamos.xyz/js/xf/notice.min.js?_v=099e916e

172.67.143.25

200 OK

3.7 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/notice.min.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (3758), with no line terminators
Size
3.7 kB (3662 bytes)
Hash
dfe0222d5d182d0d6a9b43d5a6c7a39e
f0455388d72298f16ca08c8dcf5b85e18d54f659
c9a0822314b301039409542c323db4e053f62525ce8c5aa63c46a9c3a8a46ceb

HTTP Headers

GET /js/xf/notice.min.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
vary: Accept-Encoding
etag: W/"63926c70-e4e"
expires: Fri, 26 Apr 2024 08:42:20 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 549369
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X1nO99xkIMeyURb1UuAOuwReVs8HJbcSwbvTR6htZZfFNKoUgm%2B8JXULilc%2FaHl4u%2FsCsVtRvQe4%2FZyH6uxUx1BQf%2B6Wm8k8o9Zf0MKphxDUH1DJUG0JmjsqTp11Jzjd3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c5ae97956a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e

172.67.143.25

200 OK

214 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
FingerprintE3:D9:F6:C5:B2:E4:BC:3C:9A:F3:1A:E0:87:E4:4C:A3:E8:3C:CE:63
ValidityThu, 18 Apr 2024 10:12:20 GMT - Wed, 17 Jul 2024 10:12:19 GMT

File type
JavaScript source, ASCII text, with very long lines (16424)
Size
214 kB (213517 bytes)
Hash
d0ab265a4f68a45efc52408bd69a7f25
c57033113a290427c17a5cd1c94b1829aac06fed
abedeb2dbbfa0642370887c7fd082a1774f4e1f8129a4d9adba2908fe9e8b4d3

HTTP Headers

GET /js/xf/core-compiled.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=ICUoZHdJ17170feb; xf_session=BsPfcJUCssiYihESimSv_Ck4h3JDNqb8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 17:50:03 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=213917
etag: W/"63926c70-3439d"
expires: Fri, 26 Apr 2024 08:42:19 GMT
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
strict-transport-security: max-age=15768000
vary: Accept-Encoding
cf-cache-status: HIT
age: 77765
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sOZNnfOdjlDMHY99EII06dtLFble1uVKjEFk7a4YlfvC%2FSfzOcLw5lzccqaPvsTrYmNZ2A6D9JY6rgIRFqELyPsboAKxMkgllbW2640wpVgpMdi86sKy5TGxLlKwAxj4%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a02c5ae97d56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash