Report - btdb.theproxy.app/

Report Overview

Visited public
2023-10-22 15:20:01
Tags
Submit Tags
URL
btdb.theproxy.app/
Finishing URL
btdb.theproxy.app/
IP / ASN
172.67.221.232
#13335 CLOUDFLARENET
Title
BTDB - Free Torrent Search Engine | Bittorrent Movies Search Engine | Free Movies Torrent Magnet Search Engine

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
theusualsuspectz.biz	unknown	2023-01-27	2023-01-27 02:27:31	2023-10-19 14:49:39	412 B	49 kB	104.21.87.80
matomo.hellohi.me	545402	2019-07-03	2019-07-03 22:13:04	2023-10-19 14:49:40	407 B	67 kB	172.67.219.82
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-10-21 18:12:02	468 B	3.2 kB	151.101.193.229
a.we-are-anon.com	unknown	2023-07-17	2023-07-20 01:30:25	2023-09-25 15:30:49	398 B	90 kB	172.67.141.212
use.fontawesome.com	942	2012-10-18	2017-01-30 05:43:25	2023-10-21 18:16:52	1.5 kB	145 kB	172.64.103.11
formden.com	454894	2015-01-11	2015-02-28 03:46:06	2023-10-14 21:21:49	471 B	204 kB	104.26.1.81
vpop2.com	unknown	2023-02-20	2023-02-21 12:38:02	2023-09-30 20:05:47	420 B	809 B	0.0.0.0
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-10-21 18:41:45	884 B	57 kB	104.17.25.14
heartilyscales.com	unknown	2022-12-16	2022-12-16 09:32:11	2023-10-20 00:16:24	441 B	15 kB	192.243.61.225
btdb.theproxy.app	unknown	2020-02-01	2023-10-22 13:04:22	2023-10-22 13:04:22	5.9 kB	321 kB	104.21.53.254
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-10-21 19:21:33	439 B	36 kB	104.18.11.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-10-22 15:19:44	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-10-22 15:19:44	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-22	medium	heartilyscales.com	Sinkholed
2023-10-22	medium	theusualsuspectz.biz	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	From	Size	First Seen	Last Seen
	unknown	Function	34 B	2023-04-11	2025-07-24
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16 Last Seen2025-07-24 23:59 Times Seen67682 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	btdb.theproxy.app/	ScriptElement	208 B	2023-03-29	2025-05-20
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 22:55 Last Seen2025-05-20 22:39 Times Seen6 Hash 4be6588b9650d63c8034927b7ae145d0 57a127077111dc2075310eda76dc9369651cc06d 73eaaf8c35f60d5ff2fb22ab36ea99fcbc6daad2dfe0d2aedf3886e0c9f2ab4e Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-07-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 03:40 Times Seen66582 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	btdb.theproxy.app/app/apx14.js	ScriptElement	7.7 kB	2023-03-07	2025-07-24
Pretty URL btdb.theproxy.app/app/apx14.js IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-07-24 23:48 Times Seen1106 Hash dfb1f327618e201778f2de85cfbcd173 fceb89a2221463e5bc5a71feff1247683ab08cc5 dc03bc8b63938916a73dd976e186d05559ddc61da2725e1063b7936fa9f0fc33 Loading...

	btdb.theproxy.app/	ScriptElement	28 B	2023-03-29	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 22:55 Last Seen2024-08-21 04:42 Times Seen4 Hash b2ac40e4410229f0c3a6b567852983c0 153278185e8afa6bc67ad372f9b097cfc6353bc2 baccad037870581fe00cdee037b38c00dfb89fa592907051337a1d53cf2867d8 Loading...

	btdb.theproxy.app/	ScriptElement	29 B	2023-03-29	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 22:55 Last Seen2024-08-21 04:42 Times Seen4 Hash 5947c3025f3331d1e86c1c3b0f8c8c87 c3d5ae1c3db59e1db25a823e006786c7dd8ef0c2 843b2b00225e1cab51194e2b6776fda3f62f736f549581b82bc2f3cab50bb006 Loading...

	btdb.theproxy.app/	ScriptElement	23 B	2023-03-29	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 22:55 Last Seen2024-08-21 04:42 Times Seen4 Hash 16f63b9dcf0f424d166b06552e753025 852462482ea547b421acf7fde7aa0397b125f836 8987ec50ed22908b8b41659c4c93826189ac1b9dd9a588f97ca9074d37a837c6 Loading...

	btdb.theproxy.app/	ScriptElement	469 B	2023-04-13	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-13 18:12 Last Seen2024-08-21 04:42 Times Seen4 Hash bf417fe4e512829632380c81a7e42fe3 d3035dcfe4a7dc51d07d11781536240cfd5544da 310eff8fb93c3a778046909a0ed58f55242d27c26a16c6fe321780dc922ea3af Loading...

	maxcdn.bootstrapcdn.com/bootstrap/3.3.0/js/bootstrap.min.js	ScriptElement	35 kB	2023-03-07	2025-07-24
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/3.3.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 09:27 Times Seen683 Hash 281cd50dd9f58c5550620fc148a7bc39 dfb8410ffc10a57d69b81620087c5a0b6027765a 484081bfe6c76d77610eb71a6e71206fe5304d62c037f058b403592192069306 Loading...

	btdb.theproxy.app/	ScriptElement	508 B	2023-03-29	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 22:55 Last Seen2024-08-21 04:42 Times Seen4 Hash 971e865ea5337d6b2aa044559c8cef84 a336f6bb07e1dd502f4bd9926db43f009401d665 ffe1ecdd8128c02ffb72bdab6c678c05e5786f3f2bf0c0d957183eaf1cd51284 Loading...

	btdb.theproxy.app/	ScriptElement	551 B	2023-03-08	2025-07-20
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:45 Last Seen2025-07-20 23:40 Times Seen65 Hash 0777d21c374ffc4f9676ca1ff556a451 ed8f5d5c3f1fea36fed73130f0a7bf86c6e402f1 f14a0d9a871bd227ffcfccebe71df45ccd2f9b3d49ffd6cf57088abbabb81b81 Loading...

	btdb.theproxy.app/	ScriptElement	816 B	2024-08-21	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 03:50 Last Seen2024-08-21 03:50 Times Seen1 Hash f5581d01a9fe2940eb6c218c13ec8da9 7b357a0b29e02ee9216ab78922f9929dc83458ae 49b4cd9b790197f377b36b198b3ee5320f23379f61b0766bc8c9cecac0bda2cd Loading...

	btdb.theproxy.app/	ScriptElement	464 B	2023-03-29	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 23:21 Last Seen2024-08-21 03:50 Times Seen6 Hash abcf6c1e1cccc46359bf189950a57a55 40b63c840292f27200cbdaf877945aef8daa82a9 96529037a26216bb57f51fa01e50d96be83addf5c0a685113615105e33319ac9 Loading...

	btdb.theproxy.app/	ScriptElement	449 B	2023-03-07	2025-07-09
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:40 Last Seen2025-07-09 17:01 Times Seen403 Hash 8ec4ea2cc07fb4298dd793cbc67d3755 04c34c92ef5baad58af7c56b728d4a84c55f7185 9a0e8ee9789c9f554b318f332bf0d2c61f85cdcf33afc1228b6f94181f841b1d Loading...

	btdb.theproxy.app/	ScriptElement	109 kB	2023-10-21	2024-08-21
Pretty URL btdb.theproxy.app/ IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 10:44 Last Seen2024-08-21 03:57 Times Seen6 Hash 4935e427f22fef71ee1b02e74a7c079c 1c883af2f602eaa1502c64d26a77baecb9ca9033 5e244e6df724fa6dcd3b303e15b098972447e0b382ec01401359de20ff4ef192 Loading...

	btdb.theproxy.app/app/apx19.js	ScriptElement	9.2 kB	2023-03-07	2025-07-24
Pretty URL btdb.theproxy.app/app/apx19.js IP 104.21.53.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-07-24 23:48 Times Seen1110 Hash 2344c3f05f624d595f6fb920e4d74ded eb4d1404ac2d5eecd307f4588aeeab5c8ef463f1 3a28fe59e4a2af96d8edeeb12d7040c574cf71fa88fccb5cf49e9c0a1d4e4c7a Loading...

	unknown	EventHandler	21 B	2023-04-10	2025-07-25
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 22:51 Last Seen2025-07-25 03:52 Times Seen7026 Hash e56ddbb05a974a6bc5ea44661e509a21 448d4cb69f9441e10731b1ff4aa9dc81502589bd 1759e8c6c2ce9c987245281cd33bb9260ce82e31b604131a5da486db89369913 Loading...

HTTP Transactions (25)

URL IP Response Size

GET cdn.jsdelivr.net/npm/file-icon-vectors@1.0.0/dist/file-icon-square-o.min.css

151.101.193.229

200 OK

2.4 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/file-icon-vectors@1.0.0/dist/file-icon-square-o.min.css
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://btdb.theproxy.app/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (25734)
Size
2.4 kB (2434 bytes)
Hash
fca0ba5ed4d8f09dd04b4b69669baf75
46b5d1d7ed20d24fafd7c920ec77aa7905c9c80c
c7593a2088993b008f62c4f0e70de7ee5fe596646d6b74b1b76da918ef904dc0

HTTP Headers

GET /npm/file-icon-vectors@1.0.0/dist/file-icon-square-o.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.0.0
x-jsd-version-type: version
etag: W/"6578-RrXR1+0g0k+v18kg7HeqeQXJyAw"
content-encoding: br
accept-ranges: bytes
date: Sun, 22 Oct 2023 15:19:43 GMT
age: 2295833
x-served-by: cache-fra-etou8220052-FRA, cache-bma1668-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2434
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
28 kB (27501 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 27501
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942b1e-6b6d"
last-modified: Thu, 22 Jun 2023 11:06:06 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4505642
expires: Fri, 11 Oct 2024 15:19:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rg4YW2cf%2BiCfuXyT1gyjTOwzwNwoqaurKHFsFtfBeTgaz2myd%2BRrWFI5YUbHG4VYRHAvTq%2FVdK3PWHQOsRadd2AAo4joOVeA6pFiJCUWERW5cRQLtzkez7tHYDoBVZxtTtNcLvlk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81a2b861f9b556a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
28 kB (27501 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 27501
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942b1e-6b6d"
last-modified: Thu, 22 Jun 2023 11:06:06 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4505643
expires: Fri, 11 Oct 2024 15:19:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Iudi%2FiuLpJ9s%2B%2FGZWOQMT5LjISjPckRDF0GXcvworS6RbtsEDyMDzaeMR2ZLTPKovisZ2rG18K4sA2UhSwLJ6rRt%2ByGe9NfF1Dlzv5Cdg1bh1xEm9ZeI2LbvCMZudxUCFD7xabdn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81a2b8655bb156a4-OSL
alt-svc: h3=":443"; ma=86400

GET a.we-are-anon.com/h/

172.67.141.212

89 kB

URL GET
a.we-are-anon.com/h/
IP
172.67.141.212:0
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectwe-are-anon.com
FingerprintBE:0B:14:13:DD:1E:0F:02:39:75:C1:FB:07:09:AD:F0:B7:05:A1:91
ValidityThu, 14 Sep 2023 04:33:05 GMT - Wed, 13 Dec 2023 04:33:04 GMT

File type
HTML document, ASCII text, with very long lines (25956)
Size
89 kB (89115 bytes)
Hash
f6867c2f54fc2c9a68a4ebc77de8f0b2
cf9a8e5da83c4db6f7a2f8939e3fae317f8242db
08b2519890eddf58f0112c43deea0f80fb012db486e58039126039991dec3b4d

HTTP Headers

GET /h/ HTTP/1.1
Host: a.we-are-anon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btdb.theproxy.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:44 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=aae68l0o17lse10vkvc0gar29n; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H7wrCsjEPn9%2B%2BKDmz9TdC%2F5WggzksR35msumzU3tpiFQIN%2Bz3E0qqULGgFbzHvnr6ZSopk64V3GpRtvzGGCBOualTHhVcStABXre9ZwD6%2BErj63Nw%2BIvskgJ7qox47Whe3sAzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b8651b7656c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET use.fontawesome.com/releases/v5.8.1/webfonts/fa-regular-400.woff2

172.64.103.11

200 OK

14 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-regular-400.woff2
IP
172.64.103.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13552, version 329.-17761\012- data
Size
14 kB (13552 bytes)
Hash
e6257a726a0cf6ec8c6fec22821c055f
8583a4f0dd12e15a48b3395593307a84d971cc33
ccf4db1eeb68c96e05e74f8ebfa75cc60c3a0fed862dae6b0ad85d4e1b5b4e4f

HTTP Headers

GET /releases/v5.8.1/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btdb.theproxy.app
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:44 GMT
content-type: font/woff2
content-length: 13552
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "e6257a726a0cf6ec8c6fec22821c055f"
last-modified: Fri, 22 Sep 2023 01:45:57 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 4871
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kALev3yMBNqHnMd7t9PglKoGOIN6nr5t134b9la2%2F2IOB7HsVKwv2CVgw0BszkfQJr9m6AyWRymJ5VYPPM8TCIcZQqQNBd%2F8iQcIm9RMF%2B4dtscJ%2FWLDf3TYvLw9OcrMdI0P1BsD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b8667db663bf-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET heartilyscales.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js

192.243.61.225

200 OK

14 kB

URL GET HTTP/1.1
heartilyscales.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjectheartilyscales.com
FingerprintF0:0C:2F:00:27:D9:41:A2:9B:5F:2C:5F:B6:BE:55:43:BB:A5:CC:81
ValidityFri, 13 Oct 2023 06:44:51 GMT - Thu, 11 Jan 2024 06:44:50 GMT

File type
ASCII text, with very long lines (40513), with no line terminators
Size
14 kB (14445 bytes)
Hash
7a182710d3ab1deeda56865ee3fcbb37
a8d7056fb8688a7c310a206c61e167d747e85530
2afb06cc2ac0709d78f8899a29f4cfd16fdb6e4534694a1bb3c01f1349aefd0d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a2/86/90/a286902791a7f4c98bcb1e812322cd78.js HTTP/1.1
Host: heartilyscales.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Oct 2023 15:19:44 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1f75916548d549570279cf84dda16372
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET use.fontawesome.com/releases/v5.8.1/css/all.css

172.64.103.11

200 OK

55 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.8.1/css/all.css
IP
172.64.103.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (54926)
Size
55 kB (55111 bytes)
Hash
e4c542a7f6bf6f74fdd8cdf6e8096396
3a0571a695a35f238026b9398386dc99d9a0c56d
eeb17a45a48aca1d7adbcf04de155dcd0b47cb36ad036310446bb471fea9aaa3

HTTP Headers

GET /releases/v5.8.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btdb.theproxy.app
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:44 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"e4c542a7f6bf6f74fdd8cdf6e8096396"
last-modified: Fri, 22 Sep 2023 01:45:55 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 4871
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wFN6mF5WVBBXkHSXe8HSNed97VRxtEJ6KQHHff2DosxgxModGd%2BweB1YeIX8g07sFZCIfuDD1ynWdfB5mHvn61m0ferCd1nKKjgucx4zGiod4wT28bKamTa1R6iNxtIfw2dCzTFM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b8641a4463bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET formden.com/static/assets/demos/bootstrap-iso/bootstrap-iso/bootstrap-iso.css

104.26.1.81

200 OK

203 kB

URL GET HTTP/2
formden.com/static/assets/demos/bootstrap-iso/bootstrap-iso/bootstrap-iso.css
IP
104.26.1.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB4:20:D5:56:2D:B7:AA:41:22:3D:EF:6E:99:C8:76:04:93:79:F0:F1
ValidityWed, 19 Apr 2023 00:00:00 GMT - Thu, 18 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (386)
Size
203 kB (202858 bytes)
Hash
983b32a3322df186728fb6b0f8a1fb74
16402572b9e1e854737c0adade7372b680739f2b
404e4e0e62d557f5850e6f82dcf55d7295566f59046b98d6bdd8f043bd61a136

HTTP Headers

GET /static/assets/demos/bootstrap-iso/bootstrap-iso/bootstrap-iso.css HTTP/1.1
Host: formden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: text/css
last-modified: Fri, 25 Sep 2015 15:49:42 GMT
etag: W/"3186a-520944bc5d687-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7uMWSUiJnbZSfPq%2F5RJtr7naipnEEw95hOLJXTgNuhCwbp250S3Xx3bsLG3zeee%2FvLASHS5h9VAGU8%2BN%2Fe%2FYp2hwFP1niczh40txv0qrFlEmA%2BwRy%2FFznKvFu0W%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b861ffb15695-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET vpop2.com/api_.null.p_.null.nfo.php?js=1

0.0.0.0

0 B

URL GET
vpop2.com/api_.null.p_.null.nfo.php?js=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://btdb.theproxy.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectvpop2.com
Fingerprint42:76:18:68:08:D1:EA:9B:08:AB:8F:21:A7:4F:09:AF:A8:76:A5:DE
ValiditySun, 15 Oct 2023 02:22:37 GMT - Sat, 13 Jan 2024 02:22:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api_.null.p_.null.nfo.php?js=1 HTTP/1.1
Host: vpop2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: text/html; charset=UTF-8
location: https://a.we-are-anon.com/h/
set-cookie: view=1; expires=Mon, 23-Oct-2023 15:19:43 GMT; Max-Age=86400
PHPSESSID=ba4ff4gon7ruhiha1j2jsrpu6p; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AryY9J5vCwQg4FrkKmN1X9UabY%2B3n1wup0ZuJU9lzwN%2BcvnSDRB7wDWODY36loW0LfpDt0fE7jVl1g5cgYrek4dZhx%2B4VpbvBhGohxDE3vNLENbC5E0tKgp7acg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b8620fd35695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET btdb.theproxy.app/app/apx19.js

104.21.53.254

200 OK

9.2 kB

URL GET HTTP/3
btdb.theproxy.app/app/apx19.js
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
ASCII text, with very long lines (10516), with no line terminators
Size
9.2 kB (9183 bytes)
Hash
d26dea46bd49f9297502159ed377f84c
2da344f74215617efd03c4805e5e15d7d8039515
77d7964a36f5c3105bc99271b3ffe2d4ebc5541e4acd38def734b3eaea38fd38

HTTP Headers

GET /app/apx19.js HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 15 Sep 2020 18:46:59 GMT
etag: W/"5f610c23-23df"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=86jfdmjDTXzdwE6otUPqEE77RuZuOaaIgE3W09pO1JbX8H6tsCzmHOOFoWyQzkQ%2Ft0W2O5prkdNhlTRWgQMfW0K98eCoMFCOpzgJiOPPc5Q0LdzF%2FMkMj2waNiUt9h4g4QTnqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8618a8d5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET btdb.theproxy.app/app/apx14.js

104.21.53.254

200 OK

7.7 kB

URL GET HTTP/3
btdb.theproxy.app/app/apx14.js
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
ASCII text, with very long lines (8720), with no line terminators
Size
7.7 kB (7663 bytes)
Hash
3db7729f5768690d08cfbb852bda88b3
29d50e49674a25263da47dec24318c1a68f003e0
997dcda1cc75d9821ee6a9b2dba6fff73b5f104ed1a49792f998d7fe70d24893

HTTP Headers

GET /app/apx14.js HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 15 Sep 2020 18:26:19 GMT
etag: W/"5f61074b-1def"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bdw4NSKsG3FMV9d8TIJ607%2BZbGaE8gdDQK12QVxjuFw0b30Z%2BZrMlyrH0rzzwrvaYJEvb2%2B7b6bOjej8iKsikAvzp29PFSqrNsj8WGFqMFSd2Ij%2B2IG4dwu7umL%2BrkFdv%2FaL5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8618a995689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET theusualsuspectz.biz/j/m/qqqq.js

104.21.87.80

200 OK

48 kB

URL GET HTTP/2
theusualsuspectz.biz/j/m/qqqq.js
IP
104.21.87.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerGoogle Trust Services LLC
Subjecttheusualsuspectz.biz
Fingerprint24:F3:7E:77:4B:2B:67:1B:B9:2E:2F:DF:7F:15:E9:9A:23:12:2F:89
ValidityWed, 20 Sep 2023 02:26:53 GMT - Tue, 19 Dec 2023 02:26:52 GMT

File type
ASCII text, with very long lines (48351), with no line terminators
Size
48 kB (48351 bytes)
Hash
febd5bfc829d7c8aa363e93e2e61f414
10d66213a9249bea47b15acf295323f01d217ef0
ff391f38fc73325f58d0626b9415ac121f1461407d74e86ebddefd8180050d76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /j/m/qqqq.js HTTP/1.1
Host: theusualsuspectz.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 03:16:06 GMT
etag: W/"603dadf6-bcdf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 23200801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cqtkh9a%2BdVPTkQ9%2FTvItP4xQ%2Bav3zsgXkDSaCkSD6GZmyQeC9ryhXhJoScNLpmjud1DUI%2BfBa88o5dXZluh9H7nUntTckWhm7X40k4pqFmAD3IHt5XGNc%2B1gtqN2AUXWArPdf5moIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8621a08b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2

172.64.103.11

200 OK

74 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2
IP
172.64.103.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

HTTP Headers

GET /releases/v5.8.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btdb.theproxy.app
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:44 GMT
content-type: font/woff2
content-length: 74256
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "418dad87601f9c8abd0e5798c0dc1feb"
last-modified: Fri, 22 Sep 2023 01:45:57 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 4871
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=63vP4R%2Ff4oDQTIkaDW36Qyui0Dtd1Xs6CKk9te4xEIQkPcW8oFrKpEHqPgPh2ErhXgjzquOn02z1lPHHKcYDhUBEc4GCl89A5tigv%2FKr3jy7O53cEmwXdhNZ7nQxM4RtfG2NWS9%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b8664d8663bf-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET btdb.theproxy.app/favicon.ico

104.21.53.254

200 OK

15 kB

URL GET HTTP/3
btdb.theproxy.app/favicon.ico
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15086 bytes)
Hash
78dd0e186388a14197d9f79a10712145
a3250a837f99f52cbdd470c8b035aced9c3853d9
9097c15555c5392a97778f6a3860d7648b8ff59d06b28d2bae1d147052fd8ddc

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:45 GMT
content-type: image/x-icon
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Mon, 23-Oct-2023 15:19:45 GMT; Max-Age=86400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fuFTNHwirbQCIa8HNAsKklbt3DM6CkZe02ROu9VaxrXMdgE10v4tLHUer99akRDyKW50E1pCSPm%2FXBMwPaoMV2a8NBJa0X4otsFFiGrVp8fJ1K6wNsxVTDWaa3HZsj0l0bfC4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b86cfbb55689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET btdb.theproxy.app/files/style.css?v=3

104.21.53.254

200 OK

15 kB

URL GET HTTP/3
btdb.theproxy.app/files/style.css?v=3
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type

Size
15 kB (14554 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /files/style.css?v=3 HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: text/css;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Mon, 23-Oct-2023 15:19:43 GMT; Max-Age=86400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t4y32nQI6jO0dRo%2FQNvcyi4X21cHCANfs2ZB9kMjAZbEZbQ%2FAQC3jqb3VnX4QjB%2FaGQEY2B2hzZKpc%2BQbFmfEPnobgfRm2sHx5Xd88wDWYEowIx0baaIkkuvArLs8UjCNKNN5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8615a6b5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET btdb.theproxy.app/app/x12.js

104.21.53.254

200 OK

11 kB

URL GET HTTP/3
btdb.theproxy.app/app/x12.js
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
ASCII text, with very long lines (11180), with no line terminators
Size
11 kB (11180 bytes)
Hash
94efa3c05291ac5cccd32cc3a11c9724
3a033e4d6f5e5eaf76030a81c8a05c619de436c2
58c753f7ffcb584d2ed43470ec9bdd30a4cd4723f368d83de6163413d5555102

HTTP Headers

GET /app/x12.js HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 15 Sep 2020 18:26:18 GMT
etag: W/"5f61074a-2bac"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tOEy7V3daqF71d3iFZklWE5wuPH%2FFfB%2FAveBn00hgOkXOWnOiyg36LpdL%2FP1ZXavUnTEw7K57sNFdZ2Q7D85TkP1zQxIguIDwiKndS%2Bpb3Vzj5HR27SVb3nbr%2FKpzO0K4y00CA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b861bab35689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET matomo.hellohi.me/matomo.js

172.67.219.82

200 OK

66 kB

URL GET HTTP/2
matomo.hellohi.me/matomo.js
IP
172.67.219.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint3B:19:FF:F4:F0:F2:6F:BE:66:7F:4C:A0:E8:02:E6:F4:94:A8:6C:68
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1601)
Size
66 kB (65842 bytes)
Hash
a3a7245d6daf7d31d2069c0ba05879dd
ec1bf464889e71aec1ced6d8361a26c76e4a1460
d7fc375178c93a2fc15fd888e30170eedf4ef3d04497e7f951ab7bfe0c921693

HTTP Headers

GET /matomo.js HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:44 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 19 Oct 2023 04:58:52 GMT
etag: W/"6530b78c-10132"
expires: Sun, 22 Oct 2023 16:18:27 GMT
cache-control: public, max-age=14400
pragma: public
cf-cache-status: HIT
age: 77
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O2ZnBfp5ydP6qVgiu9lIixpAqG%2BRpvwGNc0HOYv2UVYKInmsfLPbh5YacFGCxdGSHGkgY%2FXJSikn75JQBp%2BWgGxQgwyKhGzabws5QLJV2ofnCNBzE7ZokJPVuJRtqTKKTEq1CA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8689c920b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET maxcdn.bootstrapcdn.com/bootstrap/3.3.0/js/bootstrap.min.js

104.18.11.207

200 OK

35 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.0/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (32108)
Size
35 kB (34653 bytes)
Hash
281cd50dd9f58c5550620fc148a7bc39
dfb8410ffc10a57d69b81620087c5a0b6027765a
484081bfe6c76d77610eb71a6e71206fe5304d62c037f058b403592192069306

HTTP Headers

GET /bootstrap/3.3.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:57 GMT
cdn-cachedat: 2021-06-08 21:25:28
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 228ac7b1bbec9f47d120a9620e4c6c75
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 11901215
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 81a2b861bd3356c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET btdb.theproxy.app/files/logo.png

104.21.53.254

200 OK

1.9 kB

URL GET HTTP/3
btdb.theproxy.app/files/logo.png
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
PNG image data, 304 x 93, 8-bit colormap, non-interlaced\012- data
Size
1.9 kB (1901 bytes)
Hash
6f645b7af1f3bdca67aa63b6ff66feff
c2f7b59a1056156f2f626b00d1090e154299ddfd
bbf464c6924486f9dac61ca28427e1f17e4a4f02cc5f3e4009e48241622636f9

HTTP Headers

GET /files/logo.png HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: image/png
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Mon, 23-Oct-2023 15:19:43 GMT; Max-Age=86400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IQ%2FMu5IGB2BAuxnFkd7u%2FmwbW1zhAbAyc8fFNt5qUn%2BsF6tisOJHBwLLgfnf4NoeM%2B8FZ4ygq%2BNAg%2FhAMrliFLiSymJLZnfPgh%2FQ6UQCpZg2it34VpefGJaBDN%2FRqtEoAHWWYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8618a8c5689-OSL
alt-svc: h3=":443"; ma=86400

GET btdb.theproxy.app/hy.js?q22q2q2

104.21.53.254

200 OK

56 kB

URL GET HTTP/3
btdb.theproxy.app/hy.js?q22q2q2
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
ASCII text, with very long lines (56131), with no line terminators
Size
56 kB (56131 bytes)
Hash
667d77da844b6d5ad62b2f26e77b4b12
01ae61192a38af73a93c67468fb8271d7bbfa4f6
f240ce7fa62cd81d92f29081815f2cd2376ea6867887d17d5625009ebdf355b1

HTTP Headers

GET /hy.js?q22q2q2 HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 05:53:48 GMT
etag: W/"603dd2ec-db43"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B7%2BqaXVN9pRRiMlCb7Un%2BcxJ89NgGYjrMPrstXbdeJLckOy%2FP25mz4pUEdW45xzRiTdhCSSWTlMyPSHLxvsHpBGfi9%2Br%2BKme72JtpQdViLU6llI7yhlyAzTGoyEs9ZclWjxcAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8618a905689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

POST btdb.theproxy.app/user.php

104.21.53.254

200 OK

0 B

URL POST HTTP/3
btdb.theproxy.app/user.php
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /user.php HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 39
Origin: https://btdb.theproxy.app
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:44 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C0LXbegkFOWLJ2IJCA%2FmUBtOljJsAEJjVzyp6rLOFeSibaxGX8vqdUpX%2BeCqJ5pw%2BBB3uFu9%2FYZ83rdDo4ArFP6J06VP1P36cCeUS6h12XrkFEvrEcRtGhu7FaipMgi0JdHxTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b867ffad5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET btdb.theproxy.app/

104.21.53.254

200 OK

126 kB

URL User Request GET HTTP/2
btdb.theproxy.app/
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type

Size
126 kB (126472 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: text/html;charset=UTF-8
set-cookie: view=1; expires=Mon, 23-Oct-2023 15:19:43 GMT; Max-Age=86400
PHPSESSID=enhq7amqd3pur2007be7qbmsqs; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TV5He%2FNoS9%2Fqp15fieDZ65fqyX0DSDqHsPucIv%2F%2FReiG%2BxBMO5br4%2FaUdC4NZAyPpFztPpWUrGF%2F670LsU%2BIc2zOggeYhN0YT5JDhlWQ7EnyNpNRQzslDJdEBnRAkzpJ7xFyQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81a2b85d7fe3b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET btdb.theproxy.app/cdn-cgi/apps/head/eonMsSaWoPGHqHdsBoYDBPjD6UM.js

104.21.53.254

404 Not Found

0 B

URL GET HTTP/3
btdb.theproxy.app/cdn-cgi/apps/head/eonMsSaWoPGHqHdsBoYDBPjD6UM.js
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/apps/head/eonMsSaWoPGHqHdsBoYDBPjD6UM.js HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sun, 22 Oct 2023 15:19:43 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9A9A2%2BdPKu1UeCWGS9%2F6aiNNt76vTpEZ%2B681egdFJOqZKAOtFsZKgTlF1ff%2BY77g0pltnIDUk4ZhMSKhOqw7n0P1so9A0HAFxT3bVwfffCi1lB9v2ycdQ6hAOIFw6ikd%2Bxt%2F1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8615a535689-OSL
alt-svc: h3=":443"; ma=86400

GET btdb.theproxy.app/files/font-awesome.min.css

104.21.53.254

200 OK

32 kB

URL GET HTTP/3
btdb.theproxy.app/files/font-awesome.min.css
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
ASCII text, with very long lines (30808)
Size
32 kB (31579 bytes)
Hash
617e867a0b0f815f3bb65942971a26e3
542160bc1c9a120eb1660f11d4426d9e9cbb5ce3
d802f77b468c09dbaf124f8fffc9de28bad80b11589d0652deee6c06b871ea4f

HTTP Headers

GET /files/font-awesome.min.css HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: text/css;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Mon, 23-Oct-2023 15:19:43 GMT; Max-Age=86400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1isciXqNCpOBnTab0njnXUilXvC4N0gqzbyvFMdTjy8Z9Jw%2BaW6Ql7CKUFKQxMHezm%2Fx66Gc5CtapOaXR2BucX4DtGQzR7M2%2FYzvcSf6XNeL5NfKi22r%2BgkOR%2Be7gcZhsRa9sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8615a725689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET btdb.theproxy.app/zpp/zpp4.js?q22q2q2

104.21.53.254

200 OK

39 kB

URL GET HTTP/3
btdb.theproxy.app/zpp/zpp4.js?q22q2q2
IP
104.21.53.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btdb.theproxy.app/
Certificate
IssuerLet's Encrypt
Subjecttheproxy.app
Fingerprint31:97:DF:5C:93:B5:A8:B3:20:29:F7:D1:B1:71:02:4B:39:D2:73:BF
ValiditySat, 09 Sep 2023 04:44:49 GMT - Fri, 08 Dec 2023 04:44:48 GMT

File type
ASCII text, with very long lines (38995), with no line terminators
Size
39 kB (38995 bytes)
Hash
7dc63553536847077855df4f82f1ec18
146c3aac34cb4e7e1e9c692ccd0161b2e4f018de
3a18b1964d1d209c46d754459b9ef98d4a9a85065e245f8311be727ffee3f960

HTTP Headers

GET /zpp/zpp4.js?q22q2q2 HTTP/1.1
Host: btdb.theproxy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btdb.theproxy.app/
Cookie: view=1; PHPSESSID=enhq7amqd3pur2007be7qbmsqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Oct 2023 15:19:43 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 05:53:53 GMT
etag: W/"603dd2f1-9853"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iW0M%2FJNgB3yig2K7pOcqa0qaK03IUiLZ3dIz4kYx6AOaT2DOKG0uwulNao%2BEpPy%2BeGIZww2dfQzQaa7HYgDMxF1aM3HxIesWozF6YI7BBYJLKbhNq7vG7TIkyQ1arl62vfpugg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81a2b8618a985689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash