| www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 | 159.100.13.236 | 200 OK | 5.3 kB |
URL User Request GET HTTP/2www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 IP159.100.13.236:443
CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeHTML document, ASCII text, with very long lines (558), with CRLF line terminators Hash7459862b7ff312c7daa37ef2d2d3cf32 1294a2adbeb0840bc6f76d2b1fcbff9b69629d9b 18e8c98b92c0a99f6f70bba2ddab422b283844f2c5ed038d210d4cef609311ec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:38 GMT
content-type: text/html; charset=ISO-8859-1
content-length: 5340
set-cookie: nzbgbb__sessionhash=d927fc8c5bd2bfbace2e144649b3883c; path=/; HttpOnly
nzbgbb__lastvisit=1714085438; expires=Fri, 25-Apr-2025 22:50:38 GMT; Max-Age=31536000; path=/; secure
nzbgbb__lastactivity=0; expires=Fri, 25-Apr-2025 22:50:38 GMT; Max-Age=31536000; path=/; secure
nzbgbb__referrerid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__userid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__lastvisit=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__lastactivity=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__threadedmode=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__sessionhash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__userstyleid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__languageid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__skipmobilestyle=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
cache-control: private
pragma: private
content-encoding: gzip
x-powered-by: PHP/7.1.33, PleskLin
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.25.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.25.14:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 93130
expires: Tue, 15 Apr 2025 22:50:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YVVkYA7xAaBytV16MIIIupoYFqUNURu2gCOE%2Bo84Tq%2FfgDBm9%2FiCsjDw3U6ekvy4jSgzVJ%2B0y3t10AspFBiMjjdQh59tfPDJOIK9NR5Ln%2FyAXV1o7niihJxPJuusmeryrtZsHm%2Fp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a1e4aa4acdb503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/hitnews1.gif | 159.100.13.236 | 200 OK | 6.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/hitnews1.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 118 x 80 Hashbc56392483cdc0a21938e961fcecfced b3b4d209b9c303690e5b160d2cad992c5773b8a8 895d1bd6157747a33fa54f4332e58f85604939ed268ef97923cc22cf987f3898
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/hitnews1.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/gif
content-length: 5996
last-modified: Wed, 08 Nov 2023 21:45:22 GMT
etag: "654c0172-176c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js | 142.250.74.42 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js IP142.250.74.42:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32341) Hash8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Apr 2024 13:58:09 GMT
expires: Sun, 20 Apr 2025 13:58:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 463950
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/poppy1.png | 159.100.13.236 | 200 OK | 24 kB |
URL GET HTTP/2www.nzbgrabit.org/images/poppy1.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 182 x 164, 8-bit/color RGBA, non-interlaced Hash9e260ad583b6c06491a4c9029c4752c5 aacf3d041229237b08ed24fb87801523e3111670 8e42582c2518dae2cf50e936c66664cd7adb3dda01874ee18bf767e8722e5378
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/poppy1.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/png
content-length: 23553
last-modified: Sat, 11 Nov 2023 04:58:15 GMT
etag: "654f09e7-5c01"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbit-home.png | 159.100.13.236 | 200 OK | 3.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbit-home.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced Hashb6739f6035a92c6d34af0a5dfb22303b f26103c0af738c4e3f10cd521ed0c8ee6dc60a38 01a18e7780d685c9cf86c7f15344efd95449e2d887815129c413c3f9e0bf0a64
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbit-home.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/png
content-length: 2976
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "5accbe73-ba0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js | 142.250.74.42 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js IP142.250.74.42:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32047) Hash5790ead7ad3ba27397aedfa3d263b867 8130544c215fe5d1ec081d83461bf4a711e74882 2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0
GET /ajax/libs/jquery/1.11.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33495
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 06:09:42 GMT
expires: Tue, 22 Apr 2025 06:09:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 319257
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/logo.gif | 159.100.13.236 | 200 OK | 237 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/logo.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 1000 x 130 Size237 kB (237387 bytes) Hash0a1f567ad7587863c5d186fab7b79a45 3b962713a7ca2a9610cabdef36ea63643c789568 db766b1e81a75ca27fd2379971152b1d9ba6e0155f08d43ba7ebeeb9f4987ebc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/logo.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/gif
content-length: 237387
last-modified: Sun, 15 Mar 2015 14:21:16 GMT
etag: "5505955c-39f4b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.snappycheckout.com/button.js | 143.204.55.53 | | 46 kB |
URL GET cdn.snappycheckout.com/button.js IP143.204.55.53:0
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerAmazon Subjectcdn.snappycheckout.com FingerprintCA:72:0D:4D:66:41:A6:5E:33:4C:02:AB:46:C5:6F:DF:89:62:12:F9 ValidityFri, 08 Mar 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (860) Hash13ff598f9a1a0e509c616d3bb55f66a8 46318b75c6979953a66e625810d1ebc49b72e811 0ce483123a8dc38b6d2028cbd163c2f8b7569a60bde3c3fbb7dbd8740aa72db8
GET /button.js HTTP/1.1
Host: cdn.snappycheckout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 46449
last-modified: Fri, 24 Nov 2023 23:51:22 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 03:55:19 GMT
etag: "0332a19ff7b981425bc738cebfb35e5e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ewl5wgrQwonTvUXZwnuW4n3Ed7-RY7YN1GBNKKl2dLJSTJOp-YH-0A==
age: 68121
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 | 159.100.13.236 | 200 OK | 12 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashae7f3a86be8424e2ff01b79c3d269d81 974be719ebad5213164b6e0c6f4e2a9657e500d2 478570faded54701b6f0c04f5a672b204b61bf607e827e0e4803f219fe8df71a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:28 GMT
etag: W/"661a9c2c-10dfb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/bootstrap.min.css | 159.100.13.236 | 200 OK | 18 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/bootstrap.min.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash8ce72d97840e99fa71271a8fbe9626cd fd128cd687da8d7c4518b5e02ea714bc8639e3d6 06187ccfbd955092231011bc90e39a51d58a1728ce0dc35c8d72305e636dfd5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/bootstrap.min.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2015 12:23:33 GMT
etag: W/"56093145-22840"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/skins/navbar-inverse-dark.css | 159.100.13.236 | 200 OK | 6.7 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/skins/navbar-inverse-dark.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
Hash966b7e3c0bb42ebb0413ec5bf95d3559 b5d7ed176391cef5c8dcac62d6fafbed58c66818 243010b58ff6ec26d5ab68bec7891249b3f62789c49aa99c4a031ab17d8a2fcf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/skins/navbar-inverse-dark.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Sun, 05 Jul 2015 20:03:58 GMT
etag: W/"55998dae-7202"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 | 159.100.13.236 | 200 OK | 816 B |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (1597), with no line terminators Hash2f3e7a05eecc38c57cf28657fa9b6f56 a545fa56b2d83c12029d707a93c8859ae08c8c40 7a5ee92af1615b5d3b7d4e7f245ed6caf0c85600526f0093b49fd572249f821d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-63d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/MegaNavbar.min.css | 159.100.13.236 | 200 OK | 155 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/MegaNavbar.min.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (58186), with no line terminators Size155 kB (155089 bytes) Hashfd777b732a7c039bcaa8e667741c0fcc 8baba77ef00a80ea566d605c5c44a922a80aeb2c a1000c9e4249e021ac89df4d723feda9909d7ca3e25f5d83c58debc61524e9d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/MegaNavbar.min.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Mon, 29 Jun 2015 04:14:48 GMT
etag: W/"5590c638-e34a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbit-arrow-right.png | 159.100.13.236 | 200 OK | 2.9 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbit-arrow-right.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 7 x 11, 8-bit/color RGBA, non-interlaced Hash53f7dc7938d7bba569238654436d4934 2ab7d7678bed308868e19b5ce6601de8be40d4d0 0cca0e1efc12c1520a6911470fbe43a5dfe9eaf8866a8f6827c36b43e57335fc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbit-arrow-right.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/png
content-length: 2921
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "5accbe73-b69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/gradients/gradient_tcat.gif | 159.100.13.236 | 200 OK | 1.1 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/gradients/gradient_tcat.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 27 x 65 Hasha8a3e34bb6676fd109edb6dd2d26e1c8 4ca7b6d62cdecccecb1bd53ece3c9f7dcda9a2a7 aae08440646a192a2e8f0270c3228a4e47c97f3b8328eeb3253ac8762a3eea1e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/gradients/gradient_tcat.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/gif
content-length: 1063
last-modified: Mon, 25 Dec 2017 17:13:20 GMT
etag: "5a4131b0-427"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/gradients/gradient_thead.gif | 159.100.13.236 | 200 OK | 628 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/gradients/gradient_thead.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 31 x 41 Hashcb8d6cbeda506e3b71213258670f0aef 20797a3b4532a3ae09f490faf2ccad5755320eaa 8cc97ffc7c981e52ad8d7aa7868ccbd069e195f4837d272a7769a10a1aa2312d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/gradients/gradient_thead.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/gif
content-length: 628
x-accel-version: 0.01
last-modified: Mon, 25 Dec 2017 17:13:20 GMT
etag: "274-5612d486bcc00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/ | 151.101.128.176 | 200 OK | 170 kB |
IP151.101.128.176:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65530), with no line terminators Size170 kB (170464 bytes) Hashab703f8a4e4b3f86bcbaa07728267fcd 9ea78095fb16b7bbe7eaddedbb7b0833eeee86ef 4acf00b5c2dc792089bf606c74dc8fd1e29d01a8430fbfc6187c90c6cad1b14e
GET /v3/ HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 25 Apr 2024 20:44:31 GMT
etag: "ab703f8a4e4b3f86bcbaa07728267fcd"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Thu, 25 Apr 2024 22:50:39 GMT
via: 1.1 varnish
age: 21
x-request-id: a216a8cd-5997-46c8-b20f-09e1902d3694
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 9
vary: Accept-Encoding
timing-allow-origin: *
content-length: 170464
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/animated_favicon.gif | 159.100.13.236 | 200 OK | 55 kB |
URL GET HTTP/2www.nzbgrabit.org/animated_favicon.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 16 x 16 Hashffb5b583ca9c474636b5249d02831b78 fe7fab2c424ea862074ea4f0164a3a382d14a456 25baa127bb84cf9e1a8a2e5cc5502a9f968c6bb0fb11383ffe5b4fced5f3240b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /animated_favicon.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:40 GMT
content-type: image/gif
content-length: 55172
last-modified: Sun, 25 May 2014 12:33:16 GMT
etag: "5381e30c-d784"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html | 151.101.128.176 | | 154 B |
URL js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html IP151.101.128.176:0
CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hash3437aaddcdf6922d623e172c2d6f9278 f69066cf20141ac93418102d3eee7c0225b8a623 35dcc382eb69d00369d708708cdc545f3968b68fa5bbe3e728d11fedd04f93bb
GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 20:25:37 GMT
etag: "3437aaddcdf6922d623e172c2d6f9278"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Thu, 25 Apr 2024 22:50:40 GMT
via: 1.1 varnish
age: 11614255
x-request-id: e312ae1d-a75f-408e-b5cb-d0056a7f707c
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 1058134
vary: Accept-Encoding
timing-allow-origin: *
content-length: 154
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js | 151.101.128.176 | 200 OK | 315 B |
URL GET HTTP/2js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js IP151.101.128.176:443
Requested byhttps://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714084730-17507edc4665333922203956de59&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (526), with no line terminators Hashd96c709017743c0759cf3853d1806ba5 72e21587610c49c8305a55e71f73fa88ed618205 ba2338aa6670580269c762f51c4291daef913201aa8f4d4fd166c1a878262652
GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 20:25:36 GMT
etag: "d96c709017743c0759cf3853d1806ba5"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Thu, 25 Apr 2024 22:50:40 GMT
via: 1.1 varnish
age: 10989597
x-request-id: 0c070f48-9e6c-44dd-9251-8b1c58d00fcb
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 1026802
vary: Accept-Encoding
timing-allow-origin: *
content-length: 315
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.5/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 11 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.5/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (32034) Hash4becdc9104623e891fbb9d38bba01be4 6c264e0e0026ab5ece49350c6a8812398e696cbb 4a4de7903ea62d330e17410ea4db6c22bcbeb350ac6aa402d6b54b4c0cbed327
GET /bootstrap/3.3.5/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4becdc9104623e891fbb9d38bba01be4"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 09/20/2023 03:55:30
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 185c788f79e12bd6c42492d7ec314b03
cdn-cache: HIT
cf-cache-status: HIT
age: 13379667
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a1e4aa5fbeb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 | 159.100.13.236 | 200 OK | 377 B |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (713), with no line terminators Hash5392724b845fc9beb7988211241d1366 375101ad49dcc016b7896b36650b92c41e5699fe dcaf6bdb03b8c6cdd1ecf0899bb5bb27ea80930ef195aacd061948c1b73aab57
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"2c9-615fb897e6276"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/flexdropdown.js | 159.100.13.236 | 200 OK | 9.2 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/flexdropdown.js IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (10026), with no line terminators Hasheb40548ac783e528078803492ed6c406 6fc6e57c77aa1ff88f036a856ea5652eeab3384a d0cd2459bd1c19123acf760790508789ab7f018015019faaba1636467f545191
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/flexdropdown.js HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Sat, 07 Sep 2013 19:35:10 GMT
etag: W/"522b7fee-23ef"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| m.stripe.com/6 | 44.237.131.121 | 200 OK | 156 B |
IP44.237.131.121:443
Requested byhttps://m.stripe.network/inner.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714084730-17507edc4665333922203956de59&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjectm.stripe.com Fingerprint1F:77:3A:2D:0A:6F:20:07:BB:34:22:BC:B6:D0:39:6D:93:AC:D5:DB ValidityTue, 16 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashe6316bf11a7bd9da9ea0805f02df4175 aa2826c2bdd5d774dd6701c2ed5974b35bf38839 99cb2d34d2390209f784b10e00935d5f134fa2bb790825f3c115534cdcf996aa
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3364
Origin: https://m.stripe.network
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:41 GMT
content-length: 156
set-cookie: m=2bfaa3e0-84d9-4cc8-977f-20e7349ded1ddf6c4f;Expires=Sat, 25-Apr-2026 22:50:41 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1714085441378842
x-stripe-server-envoy-upstream-service-time-ms: 3
x-envoy-attempt-count: 1
x-stripe-bg-intended-route-color: green
x-stripe-client-envoy-start-time-us: 1714085441378659
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 | 159.100.13.236 | 200 OK | 8.0 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (8026), with no line terminators Hash99a82131df6170e491849878bbf56fd5 ecfee8ca6e5fb829790016d6d31ea82a94967e2d 1609eebd8ba34162d78ff3f229dabf2d92b0b1c5ebda4970a69e1625f69a2aaf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:28 GMT
etag: W/"661a9c2c-1f52"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 | 159.100.13.236 | 200 OK | 31 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (30619), with no line terminators Hashbea61600d4c498d49b1b1b73e9548b65 b43c1637e9c1f17c289fdf035ec30a11c9949934 58af93f5e5183b024bafc2d63130b8a419500b8ecb25ae5a5a93527013d97939
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-779b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/nzbgrabitcore.js | 159.100.13.236 | 200 OK | 4.1 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/nzbgrabitcore.js IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (4216), with no line terminators Hash92c4827f0a42a89257b5a7cdbb41d964 3a0acc6fe70400fe62c56b097fcb080bc2f38f89 584873864789977c4aac73f5d198791d75c262986ecda7e1805567a2103a8847
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/nzbgrabitcore.js HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Sun, 22 Feb 2015 15:03:30 GMT
etag: W/"54e9efc2-ff1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/js/scripts.js?v=425 | 159.100.13.236 | 200 OK | 24 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/js/scripts.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashcd4696fb4800c79da282e7e5462e7955 db0e9a2dfd962e80a2647da95304bf1f94173c95 d5beb0650cd6a0172463b01d7f59b78e7992c5a4245d674e7322c68cc67b217e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/js/scripts.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Tue, 06 Oct 2015 11:32:46 GMT
etag: W/"5613b15e-5fc5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html | 151.101.128.176 | 200 OK | 200 B |
URL GET HTTP/2js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html IP151.101.128.176:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hash17d1120334cb0cb3cd8a62fc03671010 b40ef341ad651dcdb89d6a510fe324a79e18fc37 b37c9e71ffd7587b59be57d9644c546deae50598348d3f057ef3e971d2d7285c
GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 20:25:37 GMT
etag: "3437aaddcdf6922d623e172c2d6f9278"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Thu, 25 Apr 2024 22:50:40 GMT
via: 1.1 varnish
age: 11614255
x-request-id: e312ae1d-a75f-408e-b5cb-d0056a7f707c
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 1058134
vary: Accept-Encoding
timing-allow-origin: *
content-length: 154
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/nzbgrabit.js?version=410 | 159.100.13.236 | 200 OK | 10 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/nzbgrabit.js?version=410 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (10150), with no line terminators Hash99fe1fb55312ed1ec6602fe88e92d3e6 7578c5cc29ce0ac41a22c43b0f0355ad55d12300 699ad0447880bdc2b7b6ebf6de6520da1307234ee233897507e274caebac2301
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/nzbgrabit.js?version=410 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Sat, 18 Feb 2023 17:17:27 GMT
etag: W/"63f10827-27a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.snappycheckout.com/button.css?v=040922 | 188.114.97.1 | 200 OK | 11 kB |
URL GET HTTP/2www.snappycheckout.com/button.css?v=040922 IP188.114.97.1:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectsnappycheckout.com Fingerprint88:2C:8E:5C:57:CF:08:43:43:A8:62:B0:6A:B2:AD:D0:97:12:99:50 ValiditySun, 24 Mar 2024 00:34:21 GMT - Sat, 22 Jun 2024 00:34:20 GMT
File typeASCII text, with very long lines (1312), with CRLF line terminators Hash9e7f7c2f24dfb46fd711b87e27dfc128 f4669e8f9227aeafbb761559ba9296eb603f467e e1aca1a11e9870eeed5c9e84960fb848466d8766ef525a1964221f0abeed0d8b
GET /button.css?v=040922 HTTP/1.1
Host: www.snappycheckout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:50:40 GMT
content-type: text/css
last-modified: Thu, 07 Mar 2024 02:36:45 GMT
etag: W/"6156b04b3870da1:0"
server-node: 1
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=atvwPgibGVrJ3uCwEEKEMfCm19eE8TkASBrsyx6YI7c76Gg%2BWL8ngPX3TGI9SExw7mqoosQ5OiMBKEg%2FQlrLc1JXp9mIip%2FXFxkoIa4CntlMNBL75FvjD2YXB4UIhpRCDy1m%2FlpPm0eq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a1e4ae6f0c5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/black_downward_arrow.png | 159.100.13.236 | 200 OK | 459 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/black_downward_arrow.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 18 x 21, 8-bit gray+alpha, non-interlaced Hash18ed628b79bb9eb87f20f6edf9091828 4db7697e068b15c42fe4288bd82f80b08b71e2ff 62a760a212ec3a6c67e2e8ba74bf28c964db7cc4aba2cce314bc5e7c14451eb9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/black_downward_arrow.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/png
content-length: 459
x-accel-version: 0.01
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "1cb-5697ea50642c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nzbgrabit.org
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 794094
expires: Tue, 15 Apr 2025 22:50:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QtEAcqi7yFLwrhT7XFSNqAuf5%2Bla5HfXXn1YFZQaJW5hxewda1SF9vpvZiwcxpoRbUP0G3Hi6L889sPCXTdAr2%2FZ74wYKTxf1FC3oN9MCeWBdzsOKzvlU9T8%2B5Tb9EfUicvrFxLo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a1e4ad4abd0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.nzbgrabit.org/clientscript/yui/connection/connection-min.js?v=425 | 159.100.13.236 | 200 OK | 13 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/yui/connection/connection-min.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (6075) Hash16109de6692eedf52681b60313226a22 34cae3b3e6bfd0fd42281ad988e5b564c6d35c22 c1287adfc1c6761dcb4221e342113981bfcf6067e0f65adbf417674f5e83da4d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/yui/connection/connection-min.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:15 GMT
etag: W/"63df1403-33c9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 | 159.100.13.236 | 200 OK | 62 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (12788) Hash0061011aa28e2472d07d7bc7e0f179bd 315e9836288696569c93aa0a908d285b3f15d6a2 fb0768b04af92d670757d4b1289d6745e27b474e4fb15eff5306d9e57226d9b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:15 GMT
etag: W/"63df1403-f0b3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| m.stripe.network/out-4.5.43.js | 54.230.111.85 | 200 OK | 89 kB |
URL GET HTTP/2m.stripe.network/out-4.5.43.js IP54.230.111.85:443
Requested byhttps://m.stripe.network/inner.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714084730-17507edc4665333922203956de59&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /out-4.5.43.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Fri, 30 Jun 2023 14:32:28 GMT
server: Cloudfront
content-encoding: br
date: Thu, 25 Apr 2024 22:46:06 GMT
cache-control: max-age=300, public
etag: W/"69cb7809b5011312e716f29b3d19dce6"
vary: Accept-Encoding, Origin
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 280
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ERxF1XKEIvvhZ9q6lBsKcUu0v-tQQ0t4bL9ZRtqDerWwM59AbZtcQA==
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_md5.js?v=425 | 159.100.13.236 | 200 OK | 6.2 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_md5.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeUnicode text, UTF-8 text, with very long lines (6210), with no line terminators Hash0ed9e0c91578fe8ff8de095fc7775813 61ee08174745d91091ea165b02ae575b239acf32 fb4983779265d0f34cafb7623e8f4f9d44e9d4cf0351513badb9f650bdb3be4d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_md5.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:08 GMT
etag: W/"63df13fc-1810"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/bg_tile.gif | 159.100.13.236 | 200 OK | 427 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/bg_tile.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 5 x 6 Hash0e45977c04cb17ffe911f24f21ec3949 4976a196988b9cdffd6b5b8408149df5cc6491d4 6be0ce1875d3bb46a0af077840fc42544ab77651ce9f866d1134956a0ac08303
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/bg_tile.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/gif
content-length: 427
x-accel-version: 0.01
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "1ab-5697ea50642c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin-core.js?v=425 | 159.100.13.236 | 200 OK | 52 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin-core.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin-core.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:08 GMT
etag: W/"63df13fc-cadc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| m.stripe.network/inner.html | 54.230.111.85 | 200 OK | 930 B |
URL GET HTTP/2m.stripe.network/inner.html IP54.230.111.85:443
Requested byhttps://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714084730-17507edc4665333922203956de59&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (950), with no line terminators Hashf965fbd577896cec85e53f8723dd00c1 8f1efde6d3060695e8c4b15570dcc602d5217836 8203a3820f68e42441db1690aee0059757efb30a2862add5dd250f106f1a08e2
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 930
last-modified: Fri, 30 Jun 2023 14:32:28 GMT
accept-ranges: bytes
server: Cloudfront
date: Thu, 25 Apr 2024 22:46:42 GMT
cache-control: max-age=300, public
etag: "06bfcd88af438673a8bf9b845a11aa6e"
vary: Accept-Encoding, Origin
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 245
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kO1htDALK1MBjLAnJBLaPpOb4iLgxl9GUlTx-dIUtH41i06uU68kBw==
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 | 159.100.13.236 | 200 OK | 12 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (12023), with no line terminators Hash66ae222bafc2eb8bc6fcce0d8b7a0cca fa282d829b2d3860e058b14607b42a3a8024385a 5b666fa07a46776665475c4addfaefb8971d1b920792c47e7e74bfd7b7545aba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-2ef7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/js/jquery.slimscroll.min.js?v=425 | 159.100.13.236 | 200 OK | 5.0 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/js/jquery.slimscroll.min.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (5195), with no line terminators Hash2fff8210f123f4cf7fea1f3d4da1257c e53c1d0e439d52222feff6da3b11332f6eb8a2c8 a341c71c2601dd9a9df8e55d9a7f11392e29e6bf858e678aafbf1cccc922e0c6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/js/jquery.slimscroll.min.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: application/javascript
last-modified: Thu, 02 Jul 2015 23:40:54 GMT
etag: W/"5595cc06-13b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbar_container_bg.png | 159.100.13.236 | 200 OK | 1.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbar_container_bg.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 20 x 29, 8-bit/color RGB, non-interlaced Hashc9704d90592f6b19fbf07895e9d8128d 295b0b55ea14f7d5fc7f8bb98a2d3a0527aa8173 dc178f8dadfcff04b0e70c726e789511f07a91d8c59ecda2c9bf3bd29b8808ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbar_container_bg.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/png
content-length: 1032
last-modified: Thu, 30 May 2013 23:38:00 GMT
etag: "51a7e2d8-408"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/logo_bg.png | 159.100.13.236 | 200 OK | 4.5 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/logo_bg.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714084730-17507edc4665333922203956de59 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 800 x 130, 8-bit/color RGBA, non-interlaced Hash00cc36dfa989a1cf077021187e638d79 1b8cda41324a8b29ea200b353a360295a6cbb7cd cc609fe6834f5aa14ebdb032d319210b3b6639bc1304dc6bfdf58fea5a14bc9e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/logo_bg.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 22:50:39 GMT
content-type: image/png
content-length: 4508
last-modified: Tue, 28 Oct 2014 14:16:22 GMT
etag: "544fa536-119c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|