| www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 | 159.100.13.236 | 200 OK | 5.4 kB |
URL User Request GET HTTP/2www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 IP159.100.13.236:443
CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeHTML document, ASCII text, with very long lines (558), with CRLF line terminators Hash579fefd2e8842c42947c2a40e3f20681 7d754a53f09ac34af2cf2d023193b8185644643f df59a5da0d8f1e5f0d2fb78c5d0cb58d80d5507cef73833289d3589745999a8a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/html; charset=ISO-8859-1
content-length: 5350
set-cookie: nzbgbb__sessionhash=cc492a1365434cd1e3cf7c721cd5c814; path=/; HttpOnly
nzbgbb__lastvisit=1714122809; expires=Sat, 26-Apr-2025 09:13:29 GMT; Max-Age=31536000; path=/; secure
nzbgbb__lastactivity=0; expires=Sat, 26-Apr-2025 09:13:29 GMT; Max-Age=31536000; path=/; secure
nzbgbb__referrerid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__userid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__lastvisit=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__lastactivity=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__threadedmode=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__sessionhash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__userstyleid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__languageid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
nzbgbb__skipmobilestyle=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
cache-control: private
pragma: private
content-encoding: gzip
x-powered-by: PHP/7.1.33, PleskLin
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.24.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.24.14:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 24104
expires: Wed, 16 Apr 2025 09:13:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bkby4bGZQDoGJ2GYb0zenzDHnCbiKGEB0XDLL4tTU0qRAon3ih%2FZ3KssHlqsrnuPI5oat44BkVB9wPN4RO65fzdSByDNi4udB%2BSqjtHqbn4zyiu45LkcYejqNrCD1s6Mc1%2FHEQBS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a5750969a71c16-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/poppy1.png | 159.100.13.236 | 200 OK | 24 kB |
URL GET HTTP/2www.nzbgrabit.org/images/poppy1.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 182 x 164, 8-bit/color RGBA, non-interlaced Hash9e260ad583b6c06491a4c9029c4752c5 aacf3d041229237b08ed24fb87801523e3111670 8e42582c2518dae2cf50e936c66664cd7adb3dda01874ee18bf767e8722e5378
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/poppy1.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: image/png
content-length: 23553
last-modified: Sat, 11 Nov 2023 04:58:15 GMT
etag: "654f09e7-5c01"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/hitnews1.gif | 159.100.13.236 | 200 OK | 6.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/hitnews1.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 118 x 80 Hashbc56392483cdc0a21938e961fcecfced b3b4d209b9c303690e5b160d2cad992c5773b8a8 895d1bd6157747a33fa54f4332e58f85604939ed268ef97923cc22cf987f3898
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/hitnews1.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: image/gif
content-length: 5996
last-modified: Wed, 08 Nov 2023 21:45:22 GMT
etag: "654c0172-176c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js | 142.250.74.170 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js IP142.250.74.170:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeJavaScript source, ASCII text, with very long lines (32341) Hash8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:53:13 GMT
expires: Sat, 26 Apr 2025 05:53:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 12016
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js | 142.250.74.170 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js IP142.250.74.170:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeJavaScript source, ASCII text, with very long lines (32047) Hash5790ead7ad3ba27397aedfa3d263b867 8130544c215fe5d1ec081d83461bf4a711e74882 2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0
GET /ajax/libs/jquery/1.11.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33495
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:02:25 GMT
expires: Sat, 26 Apr 2025 06:02:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 11464
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbit-home.png | 159.100.13.236 | 200 OK | 3.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbit-home.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced Hashb6739f6035a92c6d34af0a5dfb22303b f26103c0af738c4e3f10cd521ed0c8ee6dc60a38 01a18e7780d685c9cf86c7f15344efd95449e2d887815129c413c3f9e0bf0a64
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbit-home.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: image/png
content-length: 2976
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "5accbe73-ba0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/logo.gif | 159.100.13.236 | 200 OK | 237 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/logo.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 1000 x 130 Size237 kB (237387 bytes) Hash0a1f567ad7587863c5d186fab7b79a45 3b962713a7ca2a9610cabdef36ea63643c789568 db766b1e81a75ca27fd2379971152b1d9ba6e0155f08d43ba7ebeeb9f4987ebc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/logo.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: image/gif
content-length: 237387
last-modified: Sun, 15 Mar 2015 14:21:16 GMT
etag: "5505955c-39f4b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.snappycheckout.com/button.js | 143.204.55.96 | | 46 kB |
URL GET cdn.snappycheckout.com/button.js IP143.204.55.96:0
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerAmazon Subjectcdn.snappycheckout.com FingerprintCA:72:0D:4D:66:41:A6:5E:33:4C:02:AB:46:C5:6F:DF:89:62:12:F9 ValidityFri, 08 Mar 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (860) Hash13ff598f9a1a0e509c616d3bb55f66a8 46318b75c6979953a66e625810d1ebc49b72e811 0ce483123a8dc38b6d2028cbd163c2f8b7569a60bde3c3fbb7dbd8740aa72db8
GET /button.js HTTP/1.1
Host: cdn.snappycheckout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 46449
last-modified: Fri, 24 Nov 2023 23:51:22 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 07:47:35 GMT
etag: "0332a19ff7b981425bc738cebfb35e5e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0QRuXAR6Cc-SIsGWoqBITGfKV4nU7PAim7w0JvMfZqn8A5cstbdSbA==
age: 18733
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/bg_tile.gif | 159.100.13.236 | 200 OK | 427 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/bg_tile.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 5 x 6 Hash0e45977c04cb17ffe911f24f21ec3949 4976a196988b9cdffd6b5b8408149df5cc6491d4 6be0ce1875d3bb46a0af077840fc42544ab77651ce9f866d1134956a0ac08303
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/bg_tile.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/gif
content-length: 427
x-accel-version: 0.01
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "1ab-5697ea50642c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/js/jquery.slimscroll.min.js?v=425 | 159.100.13.236 | 200 OK | 2.9 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/js/jquery.slimscroll.min.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (4804) Hashee2c89e2e07fe2193b61d64c85f7d10c b8cfcd986acd6c90d899e9a27a6dda3a5867cfdf 680919a40941875db6ef2095fb4942301ab8829aadcf5abd67a9ef31333dfae7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/js/jquery.slimscroll.min.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Thu, 02 Jul 2015 23:40:54 GMT
etag: W/"5595cc06-13b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.5/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 15 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.5/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (32034) Hash4becdc9104623e891fbb9d38bba01be4 6c264e0e0026ab5ece49350c6a8812398e696cbb 4a4de7903ea62d330e17410ea4db6c22bcbeb350ac6aa402d6b54b4c0cbed327
GET /bootstrap/3.3.5/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4becdc9104623e891fbb9d38bba01be4"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 09/20/2023 03:55:30
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 185c788f79e12bd6c42492d7ec314b03
cdn-cache: HIT
cf-cache-status: HIT
age: 13417037
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a575099d4eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/black_downward_arrow.png | 159.100.13.236 | 200 OK | 459 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/black_downward_arrow.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 18 x 21, 8-bit gray+alpha, non-interlaced Hash18ed628b79bb9eb87f20f6edf9091828 4db7697e068b15c42fe4288bd82f80b08b71e2ff 62a760a212ec3a6c67e2e8ba74bf28c964db7cc4aba2cce314bc5e7c14451eb9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/black_downward_arrow.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/png
content-length: 459
x-accel-version: 0.01
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "1cb-5697ea50642c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.24.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.24.14:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nzbgrabit.org
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 831465
expires: Wed, 16 Apr 2025 09:13:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h7YZHRxZY1WMlatXQ3VT0rzyOFtiPuAmRyhkYfwlP0KtYcjRgwXQ9UukopoIp8O2xnS2fbVYjSvo0E2Mxpw6gUDV%2FvwdHs95bopkohIZLOxYjW%2BFVoBm%2FQnRzIvZZeeUv0Vx%2Fn1v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a5750b7cdd56a2-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 | 159.100.13.236 | 200 OK | 6.3 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (30619), with no line terminators Hashbea61600d4c498d49b1b1b73e9548b65 b43c1637e9c1f17c289fdf035ec30a11c9949934 58af93f5e5183b024bafc2d63130b8a419500b8ecb25ae5a5a93527013d97939
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/additional.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-779b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbit-arrow-right.png | 159.100.13.236 | 200 OK | 2.9 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbit-arrow-right.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 7 x 11, 8-bit/color RGBA, non-interlaced Hash53f7dc7938d7bba569238654436d4934 2ab7d7678bed308868e19b5ce6601de8be40d4d0 0cca0e1efc12c1520a6911470fbe43a5dfe9eaf8866a8f6827c36b43e57335fc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbit-arrow-right.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/png
content-length: 2921
last-modified: Tue, 10 Apr 2018 13:38:59 GMT
etag: "5accbe73-b69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 | 159.100.13.236 | 200 OK | 1.4 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (1597), with no line terminators Hash2f3e7a05eecc38c57cf28657fa9b6f56 a545fa56b2d83c12029d707a93c8859ae08c8c40 7a5ee92af1615b5d3b7d4e7f245ed6caf0c85600526f0093b49fd572249f821d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/scrollbar.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-63d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/yui/connection/connection-min.js?v=425 | 159.100.13.236 | 200 OK | 175 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/yui/connection/connection-min.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (6075) Size175 kB (174603 bytes) Hash16109de6692eedf52681b60313226a22 34cae3b3e6bfd0fd42281ad988e5b564c6d35c22 c1287adfc1c6761dcb4221e342113981bfcf6067e0f65adbf417674f5e83da4d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/yui/connection/connection-min.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:15 GMT
etag: W/"63df1403-33c9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/animated_favicon.gif | 159.100.13.236 | 200 OK | 55 kB |
URL GET HTTP/2www.nzbgrabit.org/animated_favicon.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 16 x 16 Hashffb5b583ca9c474636b5249d02831b78 fe7fab2c424ea862074ea4f0164a3a382d14a456 25baa127bb84cf9e1a8a2e5cc5502a9f968c6bb0fb11383ffe5b4fced5f3240b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /animated_favicon.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/gif
content-length: 55172
last-modified: Sun, 25 May 2014 12:33:16 GMT
etag: "5381e30c-d784"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/nzbgrabitcore.js | 159.100.13.236 | 200 OK | 2.0 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/nzbgrabitcore.js IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (4081), with no line terminators Hash0279ca78b1cda8b03923e764ccb48351 866a5a1e37cd6e2c3c38566df02382ee58c3f9c8 7f302e7f3a38a9aef4bf56340c702fbf957f6e80da019d0011d08003be703ffe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/nzbgrabitcore.js HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Sun, 22 Feb 2015 15:03:30 GMT
etag: W/"54e9efc2-ff1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 | 159.100.13.236 | 200 OK | 9.8 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (12023), with no line terminators Hash66ae222bafc2eb8bc6fcce0d8b7a0cca fa282d829b2d3860e058b14607b42a3a8024385a 5b666fa07a46776665475c4addfaefb8971d1b920792c47e7e74bfd7b7545aba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/nzbs.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"661a9c2b-2ef7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 | 159.100.13.236 | 200 OK | 7.8 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (8018), with no line terminators Hash05ef9e2f76185a15ccf99b4b3932852e 9a9c313f2ff313bdbc08b89d8fb7660ae93f586f 5f84adc6140e2f212fce0864947511fd1bc6d3a693fd868cc8598bb8f17afea7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/vbsocial_notification.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:28 GMT
etag: W/"661a9c2c-1f52"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_md5.js?v=425 | 159.100.13.236 | 200 OK | 12 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_md5.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeISO-8859 text, with very long lines (5464) Hash39f907baa5dc5d62111f77e34caf189c 0e51f05f0063e350e996fef7a99cdfb14bbfca09 5688bf829b17127f092b1c84fd566f1af031de49136233c290a91c7f07f53ac3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_md5.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:08 GMT
etag: W/"63df13fc-1810"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/skins/navbar-inverse-dark.css | 159.100.13.236 | 200 OK | 2.3 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/skins/navbar-inverse-dark.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
Hash966b7e3c0bb42ebb0413ec5bf95d3559 b5d7ed176391cef5c8dcac62d6fafbed58c66818 243010b58ff6ec26d5ab68bec7891249b3f62789c49aa99c4a031ab17d8a2fcf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/skins/navbar-inverse-dark.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Sun, 05 Jul 2015 20:03:58 GMT
etag: W/"55998dae-7202"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js | 151.101.0.176 | 200 OK | 315 B |
URL GET HTTP/2js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js IP151.101.0.176:443
Requested byhttps://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (526), with no line terminators Hashd96c709017743c0759cf3853d1806ba5 72e21587610c49c8305a55e71f73fa88ed618205 ba2338aa6670580269c762f51c4291daef913201aa8f4d4fd166c1a878262652
GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 20:25:36 GMT
etag: "d96c709017743c0759cf3853d1806ba5"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 09:13:30 GMT
via: 1.1 varnish
age: 11026967
x-request-id: 773c80f7-77d8-4176-a2c2-dda29ffc7531
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 344323
vary: Accept-Encoding
timing-allow-origin: *
content-length: 315
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 | 159.100.13.236 | 200 OK | 761 B |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (713), with no line terminators Hash5392724b845fc9beb7988211241d1366 375101ad49dcc016b7896b36650b92c41e5699fe dcaf6bdb03b8c6cdd1ecf0899bb5bb27ea80930ef195aacd061948c1b73aab57
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/ug_colours.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Sat, 13 Apr 2024 14:52:27 GMT
etag: W/"2c9-615fb897e6276"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| m.stripe.network/out-4.5.43.js | 151.101.0.176 | 200 OK | 16 kB |
URL GET HTTP/2m.stripe.network/out-4.5.43.js IP151.101.0.176:443
Requested byhttps://m.stripe.network/inner.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hash69cb7809b5011312e716f29b3d19dce6 833dabfb546d57065aeba7190b5ee5a2428dfa47 e039e607c78306c7e029a7fd0ecdb14f86456f16e1a5ce65aa26b4fdf1d38a3c
GET /out-4.5.43.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 09:13:31 GMT
via: 1.1 varnish
age: 29
x-request-id: 9853ce0e-5797-49c5-ab2b-c2fd36d1f7b9
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 73
x-timer: S1714122811.049695,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 15509
X-Firefox-Spdy: h2
|
|
| m.stripe.com/6 | 52.33.51.5 | 200 OK | 156 B |
IP52.33.51.5:443
Requested byhttps://m.stripe.network/inner.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjectm.stripe.com Fingerprint1F:77:3A:2D:0A:6F:20:07:BB:34:22:BC:B6:D0:39:6D:93:AC:D5:DB ValidityTue, 16 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash71e785fe49fbde76b8c0d408fe09658a d99d048b26e7090a8374770f573156e611a561a9 f00f05c2a4846553e8c9560abde794083651e31eb946dabbf1f343903701c7bf
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3364
Origin: https://m.stripe.network
DNT: 1
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:31 GMT
content-length: 156
set-cookie: m=d829db2e-32a7-4cfb-b33c-ccd617a8bbb9091fdc;Expires=Sun, 26-Apr-2026 09:13:31 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1714122811865492
x-stripe-server-envoy-upstream-service-time-ms: 3
x-envoy-attempt-count: 1
x-stripe-bg-intended-route-color: green
x-stripe-client-envoy-start-time-us: 1714122811865211
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
|
|
| www.snappycheckout.com/button.css?v=040922 | 172.67.137.44 | 200 OK | 6.7 kB |
URL GET HTTP/2www.snappycheckout.com/button.css?v=040922 IP172.67.137.44:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectsnappycheckout.com Fingerprint88:2C:8E:5C:57:CF:08:43:43:A8:62:B0:6A:B2:AD:D0:97:12:99:50 ValiditySun, 24 Mar 2024 00:34:21 GMT - Sat, 22 Jun 2024 00:34:20 GMT
File typeASCII text, with very long lines (1312), with CRLF line terminators Hash9e7f7c2f24dfb46fd711b87e27dfc128 f4669e8f9227aeafbb761559ba9296eb603f467e e1aca1a11e9870eeed5c9e84960fb848466d8766ef525a1964221f0abeed0d8b
GET /button.css?v=040922 HTTP/1.1
Host: www.snappycheckout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: text/css
last-modified: Thu, 07 Mar 2024 02:36:45 GMT
etag: W/"805c9e4b3870da1:0"
vary: Accept-Encoding
server-node: 1
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TnCtP0z3ozKuJGOrM3bRp6XChZyCfP4%2F8MRX%2F96JRBDOIIMq%2F1gltNgVdEmZGNsKjfLSoLOVGq2RHp3%2BHQcjmGEiUIjBFERJuijtBvlRnw%2FBs7CzTT9eASA47%2FMP9UxkZbFQa07p9mGP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a5750c0eb2b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/gradients/gradient_tcat.gif | 159.100.13.236 | 200 OK | 1.1 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/gradients/gradient_tcat.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 27 x 65 Hasha8a3e34bb6676fd109edb6dd2d26e1c8 4ca7b6d62cdecccecb1bd53ece3c9f7dcda9a2a7 aae08440646a192a2e8f0270c3228a4e47c97f3b8328eeb3253ac8762a3eea1e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/gradients/gradient_tcat.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/gif
content-length: 1063
last-modified: Mon, 25 Dec 2017 17:13:20 GMT
etag: "5a4131b0-427"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 | 159.100.13.236 | 200 OK | 69 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashae7f3a86be8424e2ff01b79c3d269d81 974be719ebad5213164b6e0c6f4e2a9657e500d2 478570faded54701b6f0c04f5a672b204b61bf607e827e0e4803f219fe8df71a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 14:52:28 GMT
etag: W/"661a9c2c-10dfb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| m.stripe.network/inner.html | 151.101.0.176 | 200 OK | 930 B |
URL GET HTTP/2m.stripe.network/inner.html IP151.101.0.176:443
Requested byhttps://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html#url=https%3A%2F%2Fwww.nzbgrabit.org%2Flogin.php%3Fdo%3Dlogout%26logouthash%3D1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06&title=NZBGrabit%20Community%20Forums&referrer=&muid=NA&sid=NA&version=6&preview=false CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (950), with no line terminators Hashf965fbd577896cec85e53f8723dd00c1 8f1efde6d3060695e8c4b15570dcc602d5217836 8203a3820f68e42441db1690aee0059757efb30a2862add5dd250f106f1a08e2
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 09:13:30 GMT
via: 1.1 varnish
age: 295
x-request-id: 2471b317-5e60-4658-8f5a-60591908af04
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 664
x-timer: S1714122811.931298,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 540
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/bootstrap.min.css | 159.100.13.236 | 200 OK | 141 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/bootstrap.min.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size141 kB (141376 bytes) Hash8ce72d97840e99fa71271a8fbe9626cd fd128cd687da8d7c4518b5e02ea714bc8639e3d6 06187ccfbd955092231011bc90e39a51d58a1728ce0dc35c8d72305e636dfd5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/bootstrap.min.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2015 12:23:33 GMT
etag: W/"56093145-22840"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/gradients/gradient_thead.gif | 159.100.13.236 | 200 OK | 628 B |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/gradients/gradient_thead.gif IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeGIF image data, version 89a, 31 x 41 Hashcb8d6cbeda506e3b71213258670f0aef 20797a3b4532a3ae09f490faf2ccad5755320eaa 8cc97ffc7c981e52ad8d7aa7868ccbd069e195f4837d272a7769a10a1aa2312d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/gradients/gradient_thead.gif HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/gif
content-length: 628
x-accel-version: 0.01
last-modified: Mon, 25 Dec 2017 17:13:20 GMT
etag: "274-5612d486bcc00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/flexdropdown.js | 159.100.13.236 | 200 OK | 9.2 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/flexdropdown.js IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (10026), with no line terminators Hasheb40548ac783e528078803492ed6c406 6fc6e57c77aa1ff88f036a856ea5652eeab3384a d0cd2459bd1c19123acf760790508789ab7f018015019faaba1636467f545191
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/flexdropdown.js HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Sat, 07 Sep 2013 19:35:10 GMT
etag: W/"522b7fee-23ef"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/css/MegaNavbar.min.css | 159.100.13.236 | 200 OK | 58 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/css/MegaNavbar.min.css IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeASCII text, with very long lines (58186), with no line terminators Hashfd777b732a7c039bcaa8e667741c0fcc 8baba77ef00a80ea566d605c5c44a922a80aeb2c a1000c9e4249e021ac89df4d723feda9909d7ca3e25f5d83c58debc61524e9d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/css/MegaNavbar.min.css HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: text/css
last-modified: Mon, 29 Jun 2015 04:14:48 GMT
etag: W/"5590c638-e34a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/nzbbackend/js/nzbgrabit.js?version=410 | 159.100.13.236 | 200 OK | 10 kB |
URL GET HTTP/2www.nzbgrabit.org/nzbbackend/js/nzbgrabit.js?version=410 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (10150), with no line terminators Hash99fe1fb55312ed1ec6602fe88e92d3e6 7578c5cc29ce0ac41a22c43b0f0355ad55d12300 699ad0447880bdc2b7b6ebf6de6520da1307234ee233897507e274caebac2301
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nzbbackend/js/nzbgrabit.js?version=410 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Sat, 18 Feb 2023 17:17:27 GMT
etag: W/"63f10827-27a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/logo_bg.png | 159.100.13.236 | 200 OK | 4.5 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/logo_bg.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 800 x 130, 8-bit/color RGBA, non-interlaced Hash00cc36dfa989a1cf077021187e638d79 1b8cda41324a8b29ea200b353a360295a6cbb7cd cc609fe6834f5aa14ebdb032d319210b3b6639bc1304dc6bfdf58fea5a14bc9e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/logo_bg.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/main-rollup.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/png
content-length: 4508
last-modified: Tue, 28 Oct 2014 14:16:22 GMT
etag: "544fa536-119c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/images/bluefox/misc/navbar_container_bg.png | 159.100.13.236 | 200 OK | 1.0 kB |
URL GET HTTP/2www.nzbgrabit.org/images/bluefox/misc/navbar_container_bg.png IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typePNG image data, 20 x 29, 8-bit/color RGB, non-interlaced Hashc9704d90592f6b19fbf07895e9d8128d 295b0b55ea14f7d5fc7f8bb98a2d3a0527aa8173 dc178f8dadfcff04b0e70c726e789511f07a91d8c59ecda2c9bf3bd29b8808ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bluefox/misc/navbar_container_bg.png HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/clientscript/vbulletin_css/style00068l/additional.css?d=1713019947
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:30 GMT
content-type: image/png
content-length: 1032
last-modified: Thu, 30 May 2013 23:38:00 GMT
etag: "51a7e2d8-408"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/vbsocial/notification/js/scripts.js?v=425 | 159.100.13.236 | 200 OK | 24 kB |
URL GET HTTP/2www.nzbgrabit.org/vbsocial/notification/js/scripts.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashcd4696fb4800c79da282e7e5462e7955 db0e9a2dfd962e80a2647da95304bf1f94173c95 d5beb0650cd6a0172463b01d7f59b78e7992c5a4245d674e7322c68cc67b217e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /vbsocial/notification/js/scripts.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Tue, 06 Oct 2015 11:32:46 GMT
etag: W/"5613b15e-5fc5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html | 151.101.0.176 | 200 OK | 200 B |
URL GET HTTP/2js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html IP151.101.0.176:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hash17d1120334cb0cb3cd8a62fc03671010 b40ef341ad651dcdb89d6a510fe324a79e18fc37 b37c9e71ffd7587b59be57d9644c546deae50598348d3f057ef3e971d2d7285c
GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 20:25:37 GMT
etag: "3437aaddcdf6922d623e172c2d6f9278"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 09:13:30 GMT
via: 1.1 varnish
age: 11651626
x-request-id: 69313c3b-eb16-48a4-ab0d-223a2d395f92
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 360528
vary: Accept-Encoding
timing-allow-origin: *
content-length: 154
X-Firefox-Spdy: h2
|
|
| js.stripe.com/v3/ | 151.101.0.176 | 200 OK | 619 kB |
IP151.101.0.176:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint0C:7B:EC:2B:0B:A8:81:87:0C:D3:D8:55:B6:26:0F:CB:FA:28:ED:F8 ValidityWed, 27 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Size619 kB (619110 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/ HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 25 Apr 2024 20:46:59 GMT
etag: "ab703f8a4e4b3f86bcbaa07728267fcd"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 09:13:30 GMT
via: 1.1 varnish
age: 47
x-request-id: aea1e7ed-3897-4acb-9cf1-a0dee9b53cc1
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 71
vary: Accept-Encoding
timing-allow-origin: *
content-length: 170464
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/vbulletin-core.js?v=425 | 159.100.13.236 | 200 OK | 52 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/vbulletin-core.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/vbulletin-core.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:08 GMT
etag: W/"63df13fc-cadc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.nzbgrabit.org/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 | 159.100.13.236 | 200 OK | 62 kB |
URL GET HTTP/2www.nzbgrabit.org/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 IP159.100.13.236:443
Requested byhttps://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06 CertificateIssuerLet's Encrypt Subjectnzbgrabit.org FingerprintE0:62:47:BB:F8:09:BD:67:06:DB:E7:CF:B8:8F:A3:52:7B:2F:A5:19 ValidityFri, 12 Apr 2024 06:27:15 GMT - Thu, 11 Jul 2024 06:27:14 GMT
File typeJavaScript source, ASCII text, with very long lines (12788) Hash0061011aa28e2472d07d7bc7e0f179bd 315e9836288696569c93aa0a908d285b3f15d6a2 fb0768b04af92d670757d4b1289d6745e27b474e4fb15eff5306d9e57226d9b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=425 HTTP/1.1
Host: www.nzbgrabit.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nzbgrabit.org/login.php?do=logout&logouthash=1714122313-8606a79b78fd4c7c30dbbfe766f362cf4c245b06
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:13:29 GMT
content-type: application/javascript
last-modified: Sun, 05 Feb 2023 02:27:15 GMT
etag: W/"63df1403-f0b3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|