| www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce | 159.100.13.236 | 200 OK | 5.4 kB |
URL User Request GET HTTP/2www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce IP159.100.13.236:443
CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeHTML document, ASCII text, with very long lines (558), with CRLF line terminators Hash15928de8157f359c6201d216505a9ede 8a0769ef870259999ea18776ad6033a387edc619 835a79339d8fbe13015e13734fd7e5e330bc11cd3d91bfe91bd2a208fb3793c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/html; charset=ISO-8859-1
content-length: 5358
set-cookie: nzbgbb__sessionhash=12053b0b355ad83bc2677e78d02e7abd; path=/; HttpOnly
nzbgbb__lastvisit=1713380000; expires=Thu, 17-Apr-2025 18:53:20 GMT; Max-Age=31536000; path=/; secure
nzbgbb__lastactivity=0; expires=Thu, 17-Apr-2025 18:53:20 GMT; Max-Age=31536000; path=/; secure
nzbgbb__referrerid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__userid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__lastvisit=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__lastactivity=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__threadedmode=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__sessionhash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__userstyleid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__languageid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__skipmobilestyle=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
cache-control: private
pragma: private
content-encoding: gzip
x-powered-by: PHP/7.1.33, PleskLin
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.24.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.24.14:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 88763
expires: Mon, 07 Apr 2025 18:53:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JHxp6jYcN6JL8tJgnUFrjExoCIFq5u4A25HLEEOojSRDoqDgDlXe8%2BVY2XDBJ0rjDofDepTxvCWr6tdI0Xwfz6VTlRUN7YzSwcAmHtzjs8jPVEPNchJgsZAYb%2BjwfuaT4aas6nI3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875e9e0c987e56bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/poppy1.png | 159.100.13.236 | 200 OK | 24 kB |
URL GET HTTP/2www.nzbgrabit.org/images/poppy1.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 182 x 164, 8-bit/color RGBA, non-interlaced Hash9e260ad583b6c06491a4c9029c4752c5 aacf3d041229237b08ed24fb87801523e3111670 8e42582c2518dae2cf50e936c66664cd7adb3dda01874ee18bf767e8722e5378
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/poppy1.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: image/png
content-length: 23553
last-modified: Sat, 11 Nov 2023 04:58:15 GMT
etag: "654f09e7-5c01"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/hitnews1.gif | 159.100.13.236 | 200 OK | 6.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/hitnews1.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 118 x 80 Hashbc56392483cdc0a21938e961fcecfced b3b4d209b9c303690e5b160d2cad992c5773b8a8 895d1bd6157747a33fa54f4332e58f85604939ed268ef97923cc22cf987f3898
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/hitnews1.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: image/gif
content-length: 5996
last-modified: Wed, 08 Nov 2023 21:45:22 GMT
etag: "654c0172-176c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbit-home.png | 159.100.13.236 | 200 OK | 3.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbit-home.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced Hashb6739f6035a92c6d34af0a5dfb22303b f26103c0af738c4e3f10cd521ed0c8ee6dc60a38 01a18e7780d685c9cf86c7f15344efd95449e2d887815129c413c3f9e0bf0a64
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbit-home.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: image/png
content-length: 2976
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "5accbe73-ba0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/logo.gif | 159.100.13.236 | 200 OK | 237 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/logo.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 1000 x 130 Size237 kB (237387 bytes) Hash0a1f567ad7587863c5d186fab7b79a45 3b962713a7ca2a9610cabdef36ea63643c789568 db766b1e81a75ca27fd2379971152b1d9ba6e0155f08d43ba7ebeeb9f4987ebc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/logo.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: image/gif
content-length: 237387
last-modified: Sun, 15 Mar 2015 14:21:16 GMT
etag: "5505955c-39f4b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js | 142.250.74.42 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js IP142.250.74.42:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32341) Hash8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 13:58:09 GMT
expires: Sun, 13 Apr 2025 13:58:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 363312
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js | 142.250.74.42 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js IP142.250.74.42:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32047) Hash5790ead7ad3ba27397aedfa3d263b867 8130544c215fe5d1ec081d83461bf4a711e74882 2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0
GET /ajax/libs/jquery/1.11.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33495
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:15 GMT
expires: Fri, 11 Apr 2025 02:35:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 577086
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/bg_tile.gif | 159.100.13.236 | 200 OK | 427 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/bg_tile.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 5 x 6 Hash0e45977c04cb17ffe911f24f21ec3949 4976a196988b9cdffd6b5b8408149df5cc6491d4 6be0ce1875d3bb46a0af077840fc42544ab77651ce9f866d1134956a0ac08303
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/bg_tile.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/gif
content-length: 427
x-accel-version: 0.01
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "1ab-5697ea50642c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/logo_bg.png | 159.100.13.236 | 200 OK | 4.5 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/logo_bg.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 800 x 130, 8-bit/color RGBA, non-interlaced Hash00cc36dfa989a1cf077021187e638d79 1b8cda41324a8b29ea200b353a360295a6cbb7cd cc609fe6834f5aa14ebdb032d319210b3b6639bc1304dc6bfdf58fea5a14bc9e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/logo_bg.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/png
content-length: 4508
last-modified: Tue, 28 Oct 2014 14:16:22 GMT
etag: "544fa536-119c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbar_container_bg.png | 159.100.13.236 | 200 OK | 1.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbar_container_bg.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 20 x 29, 8-bit/color RGB, non-interlaced Hashc9704d90592f6b19fbf07895e9d8128d 295b0b55ea14f7d5fc7f8bb98a2d3a0527aa8173 dc178f8dadfcff04b0e70c726e789511f07a91d8c59ecda2c9bf3bd29b8808ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbar_container_bg.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/png
content-length: 1032
last-modified: Thu, 30 May 2013 23:38:00 GMT
etag: "51a7e2d8-408"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.5/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 11 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.5/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (32034) Hash4becdc9104623e891fbb9d38bba01be4 6c264e0e0026ab5ece49350c6a8812398e696cbb 4a4de7903ea62d330e17410ea4db6c22bcbeb350ac6aa402d6b54b4c0cbed327
GET /bootstrap/3.3.5/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4becdc9104623e891fbb9d38bba01be4"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 09/20/2023 03:55:30
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 185c788f79e12bd6c42492d7ec314b03
cdn-cache: HIT
cf-cache-status: HIT
age: 12674228
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 875e9e0ccc231bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.24.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.24.14:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nzbgrabit.org
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 88656
expires: Mon, 07 Apr 2025 18:53:21 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SjrqaR4Vd%2Bd%2Bj%2F3FUzLaamIjlpo5%2B1ExeTZcEyZbCekaDVI7Izna%2Fxp1R%2BPpqnMI%2FpJX83xwadIO%2BJWoLEyrM8JKp4LsN0iUbwUDcTJRVdaJLrNgJEo%2FDhkdLAYDA%2FdReDCp0fsi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875e9e0fbedf0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.nzbgrabit.org/vbsocial/notification/js/jquery.slimscroll.min.js?v=425 | 159.100.13.236 | 200 OK | 2.3 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/js/jquery.slimscroll.min.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (4804) Hashee2c89e2e07fe2193b61d64c85f7d10c b8cfcd986acd6c90d899e9a27a6dda3a5867cfdf 680919a40941875db6ef2095fb4942301ab8829aadcf5abd67a9ef31333dfae7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/js/jquery.slimscroll.min.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Thu, 02 Jul 2015 23:40:54 GMT
etag: W/"5595cc06-13b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.snappycheckout.com/button.js | 143.204.55.87 | | 46 kB |
URL GET cdn.snappycheckout.com/button.js IP143.204.55.87:0
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerAmazon Subjectcdn.snappycheckout.com FingerprintCA:72:0D:4D:66:41:A6:5E:33:4C:02:AB:46:C5:6F:DF:89:62:12:F9 ValidityFri, 08 Mar 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (860) Hash13ff598f9a1a0e509c616d3bb55f66a8 46318b75c6979953a66e625810d1ebc49b72e811 0ce483123a8dc38b6d2028cbd163c2f8b7569a60bde3c3fbb7dbd8740aa72db8
GET /button.js HTTP/1.1
Host: cdn.snappycheckout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 46449
last-modified: Fri, 24 Nov 2023 23:51:22 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Wed, 17 Apr 2024 05:32:32 GMT
etag: "0332a19ff7b981425bc738cebfb35e5e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3jzEKn1oDVQCxnZ5rVDk5CayrIY-LOavAFVGtf-0A5sdMP7He-tUEA==
age: 48050
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/flexdropdown.js | 159.100.13.236 | 200 OK | 3.2 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/flexdropdown.js IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash75803f5589b45cc9cc22194b11f87c87 4ee2672f515238909a7bc4ca81244ebe10617862 a270a2ce8578a7848959fee7150f2763de47b4b436b7dbec7eee801f1d858bd2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/flexdropdown.js HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Sat, 07 Sep 2013 19:35:10 GMT
etag: W/"522b7fee-23ef"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbit-arrow-right.png | 159.100.13.236 | 200 OK | 2.9 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbit-arrow-right.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 7 x 11, 8-bit/color RGBA, non-interlaced Hash53f7dc7938d7bba569238654436d4934 2ab7d7678bed308868e19b5ce6601de8be40d4d0 0cca0e1efc12c1520a6911470fbe43a5dfe9eaf8866a8f6827c36b43e57335fc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbit-arrow-right.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/png
content-length: 2921
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "5accbe73-b69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/gradients/gradient_tcat.gif | 159.100.13.236 | 200 OK | 1.1 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/gradients/gradient_tcat.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 27 x 65 Hasha8a3e34bb6676fd109edb6dd2d26e1c8 4ca7b6d62cdecccecb1bd53ece3c9f7dcda9a2a7 aae08440646a192a2e8f0270c3228a4e47c97f3b8328eeb3253ac8762a3eea1e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/gradients/gradient_tcat.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/gif
content-length: 1063
last-modified: Mon, 25 Dec 2017 17:13:20 GMT
etag: "5a4131b0-427"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/gradients/gradient_thead.gif | 159.100.13.236 | 200 OK | 628 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/gradients/gradient_thead.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 31 x 41 Hashcb8d6cbeda506e3b71213258670f0aef 20797a3b4532a3ae09f490faf2ccad5755320eaa 8cc97ffc7c981e52ad8d7aa7868ccbd069e195f4837d272a7769a10a1aa2312d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/gradients/gradient_thead.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/gif
content-length: 628
x-accel-version: 0.01
last-modified: Mon, 25 Dec 2017 17:13:20 GMT
etag: "274-5612d486bcc00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/yui/connection/connection-min.js?v=425 | 159.100.13.236 | 200 OK | 59 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/yui/connection/connection-min.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (6075) Hash16109de6692eedf52681b60313226a22 34cae3b3e6bfd0fd42281ad988e5b564c6d35c22 c1287adfc1c6761dcb4221e342113981bfcf6067e0f65adbf417674f5e83da4d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/yui/connection/connection-min.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:15 GMT
etag: W/"63df1403-33c9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html | 143.204.55.107 | | 200 B |
URL js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html IP143.204.55.107:0
File typeHTML document, ASCII text, with no line terminators Hash3437aaddcdf6922d623e172c2d6f9278 f69066cf20141ac93418102d3eee7c0225b8a623 35dcc382eb69d00369d708708cdc545f3968b68fa5bbe3e728d11fedd04f93bb
GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 200
last-modified: Fri, 12 Apr 2024 20:17:09 GMT
accept-ranges: bytes
server: Cloudfront
date: Wed, 17 Apr 2024 18:36:20 GMT
cache-control: max-age=31536000
etag: "3437aaddcdf6922d623e172c2d6f9278"
vary: Accept-Encoding
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 1027
strict-transport-security: max-age=31556926; includeSubDomains; preload
access-control-allow-origin: *
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; worker-src 'none'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; worker-src 'none'; report-uri https://q.stripe.com/csp-report
timing-allow-origin: *
x-content-type-options: nosniff
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CIGs3zQtq3bpp4h9ldSDuumJYY4YzXjde5sOqEXbGNVVH4GvUua3jw==
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js | 143.204.55.107 | 200 OK | 526 B |
URL GET HTTP/2js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js IP143.204.55.107:443
Requested byhttps://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (526), with no line terminators Hashd96c709017743c0759cf3853d1806ba5 72e21587610c49c8305a55e71f73fa88ed618205 ba2338aa6670580269c762f51c4291daef913201aa8f4d4fd166c1a878262652
GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 526
last-modified: Fri, 12 Apr 2024 20:17:07 GMT
accept-ranges: bytes
server: Cloudfront
date: Wed, 17 Apr 2024 18:36:21 GMT
cache-control: max-age=31536000
etag: "d96c709017743c0759cf3853d1806ba5"
vary: Accept-Encoding
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 1031
strict-transport-security: max-age=31556926; includeSubDomains; preload
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BPvM88bbKMFq8iJX8qax1Op7EW4X-LNhIM3UaN2MUp3MXzwbdyaAQw==
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/ | 143.204.55.107 | 200 OK | 152 kB |
IP143.204.55.107:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65530), with no line terminators Size152 kB (151583 bytes) Hashe09f28e68f3e9bdd0d42234b7be34af7 63372dbebf5a65f2a8727a34df01dcfc40ee81e9 342edb19f7d3b7a036474fe729aa7c9b073db8dbf91b945949785341223ffc42
GET /v3/ HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Wed, 17 Apr 2024 17:43:22 GMT
server: Cloudfront
content-encoding: br
date: Wed, 17 Apr 2024 18:53:21 GMT
cache-control: max-age=60
etag: W/"e09f28e68f3e9bdd0d42234b7be34af7"
vary: Accept-Encoding
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 28
strict-transport-security: max-age=31556926; includeSubDomains; preload
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O_vmS5FZbjbN1NijHAqMzvS_A20pBC1h7FukcZqjkO5WeYJDPyh8lA==
X-Firefox-Spdy: h2
|
|
| m.stripe.network/out-4.5.43.js | 151.101.128.176 | 200 OK | 16 kB |
URL GET HTTP/2m.stripe.network/out-4.5.43.js IP151.101.128.176:443
Requested byhttps://m.stripe.network/inner.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hash69cb7809b5011312e716f29b3d19dce6 833dabfb546d57065aeba7190b5ee5a2428dfa47 e039e607c78306c7e029a7fd0ecdb14f86456f16e1a5ce65aa26b4fdf1d38a3c
GET /out-4.5.43.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 17 Apr 2024 18:53:22 GMT
via: 1.1 varnish
age: 66
x-request-id: debc652b-539d-4529-b4cc-a912cac8b85a
x-served-by: cache-hel1410033-HEL
x-cache: HIT
x-cache-hits: 176
x-timer: S1713380002.311293,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 15509
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin-core.js?v=425 | 159.100.13.236 | 200 OK | 14 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin-core.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (51235) Hashf6223ba519643daaddd2b5950c2d3914 cedd360eb493b5a12ceadfde36e5bf76d71f11f5 214eef62df26372342d8bf02be2d052cd93e3029ffeed7fccaf9d14c3b1a5fe6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin-core.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:08 GMT
etag: W/"63df13fc-cadc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 | 159.100.13.236 | 200 OK | 2.0 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (1597), with no line terminators Hash2f3e7a05eecc38c57cf28657fa9b6f56 a545fa56b2d83c12029d707a93c8859ae08c8c40 7a5ee92af1615b5d3b7d4e7f245ed6caf0c85600526f0093b49fd572249f821d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-63d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/nzbgrabit.js?version=410 | 159.100.13.236 | 200 OK | 11 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/nzbgrabit.js?version=410 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (10150), with no line terminators Hash99fe1fb55312ed1ec6602fe88e92d3e6 7578c5cc29ce0ac41a22c43b0f0355ad55d12300 699ad0447880bdc2b7b6ebf6de6520da1307234ee233897507e274caebac2301
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/nzbgrabit.js?version=410 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Sat, 18 Feb 2023 17:17:27 GMT
etag: W/"63f10827-27a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/skins/navbar-inverse-dark.css | 159.100.13.236 | 200 OK | 29 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/skins/navbar-inverse-dark.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
Hash966b7e3c0bb42ebb0413ec5bf95d3559 b5d7ed176391cef5c8dcac62d6fafbed58c66818 243010b58ff6ec26d5ab68bec7891249b3f62789c49aa99c4a031ab17d8a2fcf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/skins/navbar-inverse-dark.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Sun, 05 Jul 2015 20:03:58 GMT
etag: W/"55998dae-7202"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_md5.js?v=425 | 159.100.13.236 | 200 OK | 6.2 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_md5.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeUnicode text, UTF-8 text, with very long lines (6210), with no line terminators Hash0ed9e0c91578fe8ff8de095fc7775813 61ee08174745d91091ea165b02ae575b239acf32 fb4983779265d0f34cafb7623e8f4f9d44e9d4cf0351513badb9f650bdb3be4d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_md5.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:08 GMT
etag: W/"63df13fc-1810"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html | 143.204.55.107 | 200 OK | 200 B |
URL GET HTTP/2js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html IP143.204.55.107:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hash17d1120334cb0cb3cd8a62fc03671010 b40ef341ad651dcdb89d6a510fe324a79e18fc37 b37c9e71ffd7587b59be57d9644c546deae50598348d3f057ef3e971d2d7285c
GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 200
last-modified: Fri, 12 Apr 2024 20:17:09 GMT
accept-ranges: bytes
server: Cloudfront
date: Wed, 17 Apr 2024 18:36:20 GMT
cache-control: max-age=31536000
etag: "3437aaddcdf6922d623e172c2d6f9278"
vary: Accept-Encoding
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 1027
strict-transport-security: max-age=31556926; includeSubDomains; preload
access-control-allow-origin: *
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; worker-src 'none'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; worker-src 'none'; report-uri https://q.stripe.com/csp-report
timing-allow-origin: *
x-content-type-options: nosniff
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CIGs3zQtq3bpp4h9ldSDuumJYY4YzXjde5sOqEXbGNVVH4GvUua3jw==
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 | 159.100.13.236 | 200 OK | 12 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (12023), with no line terminators Hash66ae222bafc2eb8bc6fcce0d8b7a0cca fa282d829b2d3860e058b14607b42a3a8024385a 5b666fa07a46776665475c4addfaefb8971d1b920792c47e7e74bfd7b7545aba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-2ef7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| m.stripe.network/inner.html | 151.101.128.176 | 200 OK | 930 B |
URL GET HTTP/2m.stripe.network/inner.html IP151.101.128.176:443
Requested byhttps://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (950), with no line terminators Hashf965fbd577896cec85e53f8723dd00c1 8f1efde6d3060695e8c4b15570dcc602d5217836 8203a3820f68e42441db1690aee0059757efb30a2862add5dd250f106f1a08e2
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 17 Apr 2024 18:53:22 GMT
via: 1.1 varnish
age: 28
x-request-id: 8e5f065d-bf27-4ce8-9e25-4893a4eb37c5
x-served-by: cache-hel1410033-HEL
x-cache: HIT
x-cache-hits: 83
x-timer: S1713380002.230359,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 540
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 | 159.100.13.236 | 200 OK | 31 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (30619), with no line terminators Hashbea61600d4c498d49b1b1b73e9548b65 b43c1637e9c1f17c289fdf035ec30a11c9949934 58af93f5e5183b024bafc2d63130b8a419500b8ecb25ae5a5a93527013d97939
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-779b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/MegaNavbar.min.css | 159.100.13.236 | 200 OK | 58 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/MegaNavbar.min.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (58186), with no line terminators Hashfd777b732a7c039bcaa8e667741c0fcc 8baba77ef00a80ea566d605c5c44a922a80aeb2c a1000c9e4249e021ac89df4d723feda9909d7ca3e25f5d83c58debc61524e9d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/MegaNavbar.min.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Mon, 29 Jun 2015 04:14:48 GMT
etag: W/"5590c638-e34a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 | 159.100.13.236 | 200 OK | 713 B |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (713), with no line terminators Hash5392724b845fc9beb7988211241d1366 375101ad49dcc016b7896b36650b92c41e5699fe dcaf6bdb03b8c6cdd1ecf0899bb5bb27ea80930ef195aacd061948c1b73aab57
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"2c9-615fb897e6276"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/js/scripts.js?v=425 | 159.100.13.236 | 200 OK | 24 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/js/scripts.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashcd4696fb4800c79da282e7e5462e7955 db0e9a2dfd962e80a2647da95304bf1f94173c95 d5beb0650cd6a0172463b01d7f59b78e7992c5a4245d674e7322c68cc67b217e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/js/scripts.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Tue, 06 Oct 2015 11:32:46 GMT
etag: W/"5613b15e-5fc5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| m.stripe.com/6 | 44.237.131.121 | 200 OK | 156 B |
IP44.237.131.121:443
Requested byhttps://m.stripe.network/inner.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjectm.stripe.com Fingerprint68:2C:22:23:26:66:31:BD:EB:AD:F5:2F:09:30:15:2F:A1:FE:1B:EC ValidityMon, 26 Feb 2024 00:00:00 GMT - Thu, 23 May 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash52410160991d30ca11668e9f9691e0f3 1fd160cd823d5ab8f6a0bb7d7ece27180592e575 7bee6babb28013de162b625a0c959b82699d2837e9c0fa2d903df6e0a0df8f63
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3364
Origin: https://m.stripe.network
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:23 GMT
content-length: 156
set-cookie: m=f3ee1eed-9cff-4ea8-be18-fa37131828864dca0e;Expires=Fri, 17-Apr-2026 18:53:23 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1713380003145487
x-stripe-server-envoy-upstream-service-time-ms: 2
x-stripe-bg-intended-route-color: blue
x-stripe-client-envoy-start-time-us: 1713380003145210
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/bootstrap.min.css | 159.100.13.236 | 200 OK | 141 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/bootstrap.min.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size141 kB (141376 bytes) Hash8ce72d97840e99fa71271a8fbe9626cd fd128cd687da8d7c4518b5e02ea714bc8639e3d6 06187ccfbd955092231011bc90e39a51d58a1728ce0dc35c8d72305e636dfd5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/bootstrap.min.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2015 12:23:33 GMT
etag: W/"56093145-22840"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.snappycheckout.com/button.css?v=040922 | 172.67.137.44 | 200 OK | 11 kB |
URL GET HTTP/2www.snappycheckout.com/button.css?v=040922 IP172.67.137.44:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectsnappycheckout.com Fingerprint88:2C:8E:5C:57:CF:08:43:43:A8:62:B0:6A:B2:AD:D0:97:12:99:50 ValiditySun, 24 Mar 2024 00:34:21 GMT - Sat, 22 Jun 2024 00:34:20 GMT
File typeASCII text, with very long lines (1312), with CRLF line terminators Hash9e7f7c2f24dfb46fd711b87e27dfc128 f4669e8f9227aeafbb761559ba9296eb603f467e e1aca1a11e9870eeed5c9e84960fb848466d8766ef525a1964221f0abeed0d8b
GET /button.css?v=040922 HTTP/1.1
Host: www.snappycheckout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: text/css
last-modified: Thu, 07 Mar 2024 02:36:45 GMT
etag: W/"6156b04b3870da1:0"
server-node: 2
cache-control: max-age=14400
cf-cache-status: HIT
age: 2322
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NV05uU6VeuFNYpn9HXxmX%2F5xpvLelsXWpvLbZg2sJQfnMnBunehiqUHO3tGzj9YVN4%2Blknp6Jw62Avw%2FUewWBFhkRFyiDWRX1zhPr0Cx%2BpuL02I%2BiW5C8piEKvasU8CUiZAqQ%2FBCOcey"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e9e13190e56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 | 159.100.13.236 | 200 OK | 8.0 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (8026), with no line terminators Hash99a82131df6170e491849878bbf56fd5 ecfee8ca6e5fb829790016d6d31ea82a94967e2d 1609eebd8ba34162d78ff3f229dabf2d92b0b1c5ebda4970a69e1625f69a2aaf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:28 GMT
etag: W/"661a9c2c-1f52"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/nzbgrabitcore.js | 159.100.13.236 | 200 OK | 4.1 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/nzbgrabitcore.js IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (4216), with no line terminators Hash92c4827f0a42a89257b5a7cdbb41d964 3a0acc6fe70400fe62c56b097fcb080bc2f38f89 584873864789977c4aac73f5d198791d75c262986ecda7e1805567a2103a8847
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/nzbgrabitcore.js HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Feb 2015 15:03:30 GMT
etag: W/"54e9efc2-ff1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/animated_favicon.gif | 159.100.13.236 | 200 OK | 55 kB |
URL GET HTTP/2www.nzbgrabit.org/animated_favicon.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 16 x 16 Hashffb5b583ca9c474636b5249d02831b78 fe7fab2c424ea862074ea4f0164a3a382d14a456 25baa127bb84cf9e1a8a2e5cc5502a9f968c6bb0fb11383ffe5b4fced5f3240b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /animated_favicon.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/gif
content-length: 55172
last-modified: Sun, 25 May 2014 12:33:16 GMT
etag: "5381e30c-d784"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 | 159.100.13.236 | 200 OK | 69 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashae7f3a86be8424e2ff01b79c3d269d81 974be719ebad5213164b6e0c6f4e2a9657e500d2 478570faded54701b6f0c04f5a672b204b61bf607e827e0e4803f219fe8df71a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:28 GMT
etag: W/"661a9c2c-10dfb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 | 159.100.13.236 | 200 OK | 62 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (12788) Hash0061011aa28e2472d07d7bc7e0f179bd 315e9836288696569c93aa0a908d285b3f15d6a2 fb0768b04af92d670757d4b1289d6745e27b474e4fb15eff5306d9e57226d9b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:20 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:15 GMT
etag: W/"63df1403-f0b3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/black_downward_arrow.png | 159.100.13.236 | 200 OK | 459 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/black_downward_arrow.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1713379961-0ca93e439d4b2ae355a0463cc1f7d12b1fde01ce CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 18 x 21, 8-bit gray+alpha, non-interlaced Hash18ed628b79bb9eb87f20f6edf9091828 4db7697e068b15c42fe4288bd82f80b08b71e2ff 62a760a212ec3a6c67e2e8ba74bf28c964db7cc4aba2cce314bc5e7c14451eb9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/black_downward_arrow.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:53:21 GMT
content-type: image/png
content-length: 459
x-accel-version: 0.01
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "1cb-5697ea50642c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|