Report - breachforums.st/Thread-how-2-become-a-spy?pid=603680

Report Overview

Visited public
2024-06-15 18:27:01
Tags
URL
breachforums.st/Thread-how-2-become-a-spy?pid=603680
Finishing URL
breachforums.st/Thread-how-2-become-a-spy?pid=603680
IP / ASN
185.129.102.136
#57724 Ddos-Guard Ltd
Title
BreachForums

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-06-15 18:20:48	1.3 kB	3.6 kB	23.36.77.32
breachforums.st	unknown	2023-12-13	2024-04-16 12:59:48	2024-04-18 07:09:05	20 kB	468 kB	185.129.102.136

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed
2024-06-15	medium	breachforums.st	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	breachforums.st/jscripts/jquery.plugins.min.js?ver=1821	ScriptElement	15 kB	2023-03-07	2025-04-28
Pretty URL breachforums.st/jscripts/jquery.plugins.min.js?ver=1821 IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-04-28 11:03 Times Seen390 Hash cf1f71e20e14765d6d5ea640aa4f7fc7 d1f3a0e46dd50d3a4d1839cb821ad42802619def a3f1ec1a12c5ba59cf41f98406b4a296f7a54b8c4904de9a6f1fc2e4db19b149 Loading...

	breachforums.st/jscripts/general.js?ver=1827	ScriptElement	16 kB	2023-03-07	2025-04-21
Pretty URL breachforums.st/jscripts/general.js?ver=1827 IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-04-21 18:39 Times Seen336 Hash 373ad0e5af45e8cd17b064aaa7c2d465 9e83f3daac4c6387937fa2a3e98dbe9cc1c9169e 491afa838f1b1eef0454c529c8f6fcdcec59ea31110dda7430f85cc53fb82898 Loading...

	breachforums.st/jscripts/ougc_awards.js	ScriptElement	2.1 kB	2023-03-08	2025-04-21
Pretty URL breachforums.st/jscripts/ougc_awards.js IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:04 Last Seen2025-04-21 18:39 Times Seen61 Hash b8ce948186090d33ad86ff6b113fee58 ca5a4deee1de599650a1ac4b219df3aab474c628 574f588cb25fe103a12863140f9be167021724713fad3e3db660f8d665bdbb23 Loading...

	breachforums.st/Thread-how-2-become-a-spy?pid=603680	ScriptElement	2.3 kB	2024-08-19	2024-08-19
Pretty URL breachforums.st/Thread-how-2-become-a-spy?pid=603680 IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 19:53 Last Seen2024-08-19 19:53 Times Seen1 Hash 2822b5dcdd7cae98e547d646fa583f04 38f77ab1467d1ae7576af7145351b052005ba26d 7b25e4db362de13e8b97b72a3d34d2e50a9d98bd990d66bd152a103f04a5ae0f Loading...

	breachforums.st/resources/javascript/bf_theme.js	ScriptElement	4.3 kB	2024-01-24	2025-04-21
Pretty URL breachforums.st/resources/javascript/bf_theme.js IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-24 09:29 Last Seen2025-04-21 18:39 Times Seen56 Hash f0fd3819de714adbc316258c74547fd7 a4cc73fbe20b318710c51c2e85e9ad102ae93518 5be3e5f31f1ea53733b619a6eb415d3d9b2af9fdec18aae4292eb982ae20d258 Loading...

	breachforums.st/jscripts/scrolltop.js	ScriptElement	208 B	2024-01-24	2025-04-11
Pretty URL breachforums.st/jscripts/scrolltop.js IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-24 09:29 Last Seen2025-04-11 21:54 Times Seen55 Hash 4a5e5933bacdd9d2c9c5fe163f7ca2a4 e7285d07d364e959d032d35f1a61bd038923ec3a bc07745f4e57ad880c9fa9b252d87866f654d8bb04e2a58ccf0cd31565580835 Loading...

	breachforums.st/resources/javascript/raid.js?v=1.6	ScriptElement	7.7 kB	2024-01-24	2025-04-11
Pretty URL breachforums.st/resources/javascript/raid.js?v=1.6 IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-24 09:29 Last Seen2025-04-11 21:54 Times Seen55 Hash 2ac662b9dec35c3f1e88e810ce0e5582 0c5678aa2cb6d6f8d58674020216a01fe69947d9 2b50d2d191814e97e89ae282b3a5064d95b6eb2dd2e11057534a39eae6c3985c Loading...

	breachforums.st/jscripts/jquery.js?ver=1823	ScriptElement	90 kB	2023-03-07	2025-05-02
Pretty URL breachforums.st/jscripts/jquery.js?ver=1823 IP 185.129.102.136 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-02 12:53 Times Seen4843 Hash 12b69d0ae6c6f0c42942ae6da2896e84 d2cc8d43ce1c854b1172e42b1209502ad563db83 6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f Loading...

HTTP Transactions (36)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
5c35a3180482afadf4e89f4cc249fa7b
8a088c184606fe3e4e0da8cd90b6eb5e6d30fb97
146fe131cf8436e3de4832a23b351400b4819dbd9b9716302248d3ab447f000c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "146FE131CF8436E3DE4832A23B351400B4819DBD9B9716302248D3AB447F000C"
Last-Modified: Sat, 15 Jun 2024 13:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5222
Expires: Sat, 15 Jun 2024 19:53:36 GMT
Date: Sat, 15 Jun 2024 18:26:34 GMT
Connection: keep-alive

breachforums.st/jscripts/jquery.js?ver=1823

185.129.102.136

200 OK

30 kB

URL GET HTTP/2
breachforums.st/jscripts/jquery.js?ver=1823
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
30 kB (30391 bytes)
Hash
12b69d0ae6c6f0c42942ae6da2896e84
d2cc8d43ce1c854b1172e42b1209502ad563db83
6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jscripts/jquery.js?ver=1823 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:03 GMT
content-type: application/javascript
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: W/"64f863dd-15d83"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203494
content-length: 30391
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/jscripts/jquery.plugins.min.js?ver=1821

185.129.102.136

200 OK

4.1 kB

URL GET HTTP/2
breachforums.st/jscripts/jquery.plugins.min.js?ver=1821
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
JavaScript source, ASCII text, with very long lines (14798)
Size
4.1 kB (4081 bytes)
Hash
cf1f71e20e14765d6d5ea640aa4f7fc7
d1f3a0e46dd50d3a4d1839cb821ad42802619def
a3f1ec1a12c5ba59cf41f98406b4a296f7a54b8c4904de9a6f1fc2e4db19b149

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jscripts/jquery.plugins.min.js?ver=1821 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:06 GMT
content-type: application/javascript
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: W/"64f863dd-39cf"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203494
content-length: 4081
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/jscripts/general.js?ver=1827

185.129.102.136

200 OK

4.3 kB

URL GET HTTP/2
breachforums.st/jscripts/general.js?ver=1827
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
JavaScript source, ASCII text, with very long lines (322)
Size
4.3 kB (4335 bytes)
Hash
373ad0e5af45e8cd17b064aaa7c2d465
9e83f3daac4c6387937fa2a3e98dbe9cc1c9169e
491afa838f1b1eef0454c529c8f6fcdcec59ea31110dda7430f85cc53fb82898

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jscripts/general.js?ver=1827 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:02 GMT
content-type: application/javascript
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: W/"64f863dd-3d5d"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203494
content-length: 4335
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/global.min.css?t=1712758502

185.129.102.136

200 OK

6.6 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/global.min.css?t=1712758502
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
Unicode text, UTF-8 text, with very long lines (30281), with no line terminators
Size
6.6 kB (6611 bytes)
Hash
279c72077eadd539391572af003d0a67
3d0582eaefd4e696fb2c83e671c28f415d26b39d
9959ef9a08560877505c0fd5a4d303d575035b52b3ae02567f1bedaa875c2ca3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/global.min.css?t=1712758502 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:05 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 14:15:02 GMT
etag: W/"66169ee6-764a"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203491
content-length: 6611
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/css3.min.css?t=1704585605

185.129.102.136

200 OK

496 B

URL GET HTTP/2
breachforums.st/cache/themes/theme3/css3.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (2355), with no line terminators
Size
496 B (496 bytes)
Hash
1b1c6a93b5042a2b11418b983b67b9a8
5794fdcac0f9536dc20387f019ed56d997d55674
1118f48f23d8ca0fdced2cc2b8ee80d8ad889d63b913b02e6b441ab4b8260e4c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/css3.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:08 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-933"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203491
content-length: 496
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme1/showthread.min.css?t=1704585605

185.129.102.136

200 OK

215 B

URL GET HTTP/2
breachforums.st/cache/themes/theme1/showthread.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (631), with no line terminators
Size
215 B (215 bytes)
Hash
ae2425533c8070a75aed918e3e91bf94
8d01ed1fe621f372952fc4f9596a3f93fcc6eea4
3bc1b290443f0f51ade87a5d89129c65359960e91410509bc1c8a286018477ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme1/showthread.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:07 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-277"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203491
content-length: 215
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/star_ratings.min.css?t=1704585605

185.129.102.136

200 OK

175 B

URL GET HTTP/2
breachforums.st/cache/themes/theme3/star_ratings.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (311), with no line terminators
Size
175 B (175 bytes)
Hash
64ec04e64110d36345c38f25c23d7c4a
4979b89b35328dcc681c0c7bf1c992ca21440577
44b87fe37e4aded43b52c8a025302ec979fa7f6fa899c4adebbc809f02618eeb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/star_ratings.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 14 Jun 2024 06:45:47 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-137"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 128448
content-length: 175
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/Thread-how-2-become-a-spy?pid=603680

185.129.102.136

200 OK

15 kB

URL User Request GET HTTP/2
breachforums.st/Thread-how-2-become-a-spy?pid=603680
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
15 kB (15364 bytes)
Hash
40bb6c5f94db4f51dcb16093fe92b49b
129a83de70a5b626094e8565959d80a435cda131
98472f4a3f06900973a57f04866e3b5ae2de0fbdfb74fdf4f182695437e3d5c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Thread-how-2-become-a-spy?pid=603680 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 15 Jun 2024 18:26:35 GMT
content-type: text/html; charset=UTF-8
set-cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; Domain=.breachforums.st; HttpOnly; Path=/; Expires=Sun, 15-Jun-2025 18:26:35 GMT
mybb[lastvisit]=1718475995; expires=Sun, 15-Jun-2025 18:26:35 GMT; path=/; domain=.breachforums.st; Secure
mybb[lastactive]=1718475995; expires=Sun, 15-Jun-2025 18:26:35 GMT; path=/; domain=.breachforums.st; Secure
sid=76e605f9a11cdadc1751f47181212d9e; path=/; domain=.breachforums.st; HttpOnly; Secure
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/all.min.min.css?t=1704585605

185.129.102.136

200 OK

12 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/all.min.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (55955), with no line terminators
Size
12 kB (11683 bytes)
Hash
a2764857cfcd83363da2ccf85643a605
c21ee26909c945e0981f31454cae93a5f7dcbb6c
57b9c97f366b1e5314585cd47abeeff5a64a4a94029954585029fc839b2bd822

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/all.min.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:10 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-da93"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203493
content-length: 11683
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/hovercards.min.css?t=1704585605

185.129.102.136

200 OK

1.1 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/hovercards.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (6821), with no line terminators
Size
1.1 kB (1148 bytes)
Hash
ae1c3f2dd4351c8631e1eb52f3848bdb
0837dac7354363620066b02869c892dd5645ed21
7b9dd5cf77053c8122abcffc156effb5756a0cf34d17cf51b0045feb0ce30d01

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/hovercards.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 12:12:27 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-1aa5"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
age: 195253
content-length: 1148
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/alerts.min.css?t=1704585605

185.129.102.136

200 OK

215 B

URL GET HTTP/2
breachforums.st/cache/themes/theme3/alerts.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (590), with no line terminators
Size
215 B (215 bytes)
Hash
639ec97861f30fb8d08c650febaae736
f8d33777abe66099165bb2bda84e2646b2805528
dd9be8e5befebb907336080fecd4ef25a6ea082135724b08e0142f0ba946f26b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/alerts.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:17 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-24e"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203487
content-length: 215
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/fork-awesome.min.css?t=1704585605

185.129.102.136

200 OK

6.9 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/fork-awesome.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (35298), with no line terminators
Size
6.9 kB (6890 bytes)
Hash
3f6abf9cc644dd2b1e8741b0b874edc0
a1a2417938289765d382bd74cf6b83d1fb8e883c
02dfaaa8f5fbc98645eb1ad29c24866cbc2c088ccb60c98b3f1d40dda6e4172c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/fork-awesome.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:20 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-89e2"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203483
content-length: 6890
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme1/latestposts.min.css?t=1704585605

185.129.102.136

200 OK

30 B

URL GET HTTP/2
breachforums.st/cache/themes/theme1/latestposts.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with no line terminators
Size
30 B (30 bytes)
Hash
231eede0f0410262e01b0974da3dad03
3a6f7233c7f6053e6b5fa918c899997ca6c05470
8f46ca0b800b7b1a938aa2db66ecddc77832dc6119129f11bf3060ab2831c6c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme1/latestposts.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:21 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-1d"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203483
content-length: 30
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/resources/javascript/raid.js?v=1.6

185.129.102.136

200 OK

2.3 kB

URL GET HTTP/2
breachforums.st/resources/javascript/raid.js?v=1.6
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
JavaScript source, ASCII text, with very long lines (859)
Size
2.3 kB (2336 bytes)
Hash
2ac662b9dec35c3f1e88e810ce0e5582
0c5678aa2cb6d6f8d58674020216a01fe69947d9
2b50d2d191814e97e89ae282b3a5064d95b6eb2dd2e11057534a39eae6c3985c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /resources/javascript/raid.js?v=1.6 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:27 GMT
content-type: application/javascript
last-modified: Sat, 30 Sep 2023 15:19:11 GMT
etag: W/"65183c6f-1dfd"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203470
content-length: 2336
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/jscripts/ougc_awards.js

185.129.102.136

200 OK

856 B

URL GET HTTP/2
breachforums.st/jscripts/ougc_awards.js
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
Unicode text, UTF-8 text
Size
856 B (856 bytes)
Hash
b8ce948186090d33ad86ff6b113fee58
ca5a4deee1de599650a1ac4b219df3aab474c628
574f588cb25fe103a12863140f9be167021724713fad3e3db660f8d665bdbb23

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jscripts/ougc_awards.js HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:24 GMT
content-type: application/javascript
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: W/"64f863dd-833"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203480
content-length: 856
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/resources/javascript/bf_theme.js

185.129.102.136

200 OK

771 B

URL GET HTTP/2
breachforums.st/resources/javascript/bf_theme.js
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
JavaScript source, ASCII text
Size
771 B (771 bytes)
Hash
f0fd3819de714adbc316258c74547fd7
a4cc73fbe20b318710c51c2e85e9ad102ae93518
5be3e5f31f1ea53733b619a6eb415d3d9b2af9fdec18aae4292eb982ae20d258

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /resources/javascript/bf_theme.js HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:26 GMT
content-type: application/javascript
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: W/"64f863dd-10f4"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203479
content-length: 771
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/jscripts/scrolltop.js

185.129.102.136

200 OK

118 B

URL GET HTTP/2
breachforums.st/jscripts/scrolltop.js
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
JavaScript source, ASCII text
Size
118 B (118 bytes)
Hash
4a5e5933bacdd9d2c9c5fe163f7ca2a4
e7285d07d364e959d032d35f1a61bd038923ec3a
bc07745f4e57ad880c9fa9b252d87866f654d8bb04e2a58ccf0cd31565580835

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jscripts/scrolltop.js HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:32 GMT
content-type: application/javascript
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: W/"64f863dd-d0"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203469
content-length: 118
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/lib.min.min.css?t=1704585605

185.129.102.136

200 OK

617 B

URL GET HTTP/2
breachforums.st/cache/themes/theme3/lib.min.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (2157), with no line terminators
Size
617 B (617 bytes)
Hash
8013ed1f0521406b7dac3b31c076a39d
01fb929308e3dcf4159acc2523a8476acffbf647
13a2f62f8737dce772ff2db2aa3260ef284ddfb38d08c0a8ec246259a3f7bd39

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/lib.min.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:14 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-86d"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203490
content-length: 617
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/normalize.min.min.css?t=1704585605

185.129.102.136

200 OK

588 B

URL GET HTTP/2
breachforums.st/cache/themes/theme3/normalize.min.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (1739), with no line terminators
Size
588 B (588 bytes)
Hash
ad6b0c9f9a453a93d780294b4d4d9855
af08686b3ed669de674218b21a4c5f389918da0f
eb0ca0f194bd9c51d59ce4e536a84027789d4f9b45439aaf6ea52cd88b1e1562

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/normalize.min.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:09 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-6cb"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203493
content-length: 588
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/roboto.min.css?t=1704585605

185.129.102.136

200 OK

254 B

URL GET HTTP/2
breachforums.st/cache/themes/theme3/roboto.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (1306), with no line terminators
Size
254 B (254 bytes)
Hash
b5d7e30e3fe7414a51679be6cad26236
17989ff1d83abdfa73f536f1429cd2bf89da5ae0
729c03c3cf95fdd992c0fcc21d357796c7f3d551904ec0af0442508c9344efc1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/roboto.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 14 Jun 2024 09:27:12 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-51a"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 118763
content-length: 254
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/ficons.min.css?t=1707623754

185.129.102.136

200 OK

530 B

URL GET HTTP/2
breachforums.st/cache/themes/theme3/ficons.min.css?t=1707623754
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (3935), with no line terminators
Size
530 B (530 bytes)
Hash
6f5c3dcabab118992493544c954fe13b
bbfee7572505f50f81d48775825e1579555b15f8
e6136768f3da0df2332aa1d3dff1f21801ef144a562a19ed95f1d850dbfe3b94

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/ficons.min.css?t=1707623754 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:13 GMT
content-type: text/css
last-modified: Sun, 11 Feb 2024 03:55:54 GMT
etag: W/"65c8454a-f5f"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203492
content-length: 530
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/custom.min.css?t=1706548945

185.129.102.136

200 OK

4.4 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/custom.min.css?t=1706548945
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (20747), with no line terminators
Size
4.4 kB (4416 bytes)
Hash
69e5894015955499ed03857a92ab9b08
e10ada3b0e8c4ad273408d49c701296e862f7785
d58920b97a5ca39941a2fa528ca95d45682bdbc62fb6e75eb04d9d2083783d3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/custom.min.css?t=1706548945 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:12 GMT
content-type: text/css
last-modified: Mon, 29 Jan 2024 17:22:25 GMT
etag: W/"65b7ded1-510b"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203492
content-length: 4416
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/plugins.min.css?t=1712758914

185.129.102.136

200 OK

2.3 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/plugins.min.css?t=1712758914
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (8771), with no line terminators
Size
2.3 kB (2336 bytes)
Hash
b820d692eb8ca4a000fa1079456e815a
a0da7a2e5d0e41c3a679ad80ab2a8e1ae71ec317
ed2fb4763c349b88f08a14190704c597ab9dc0a27f2f1978039dc45166bc9dae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/plugins.min.css?t=1712758914 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 12:12:24 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 14:21:54 GMT
etag: W/"6616a082-2243"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
age: 195253
content-length: 2336
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/cache/themes/theme3/mobile.min.css?t=1704585605

185.129.102.136

200 OK

1.7 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/mobile.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (5146), with no line terminators
Size
1.7 kB (1650 bytes)
Hash
8e90d8dba30a65fbb4516e50ca8c4935
0390eb4ddc362c776dce32c394a26d3b9bdd3589
0ae12ea16612322611a3b9a6d6fc4acb63fa0779d7a77ff03ef6f6556c4843d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/mobile.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 12:12:25 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-141a"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
age: 195253
content-length: 1650
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/resources/roboto/Roboto-Regular.woff2

185.129.102.136

200 OK

16 kB

URL GET HTTP/2
breachforums.st/resources/roboto/Roboto-Regular.woff2
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15736, version 1.0
Size
16 kB (15736 bytes)
Hash
479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /resources/roboto/Roboto-Regular.woff2 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/cache/themes/theme3/roboto.min.css?t=1704585605
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:38 GMT
content-type: font/woff2
content-length: 15736
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: "64f863dd-3d78"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
age: 203460
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/resources/roboto/Roboto-Bold.woff2

185.129.102.136

200 OK

16 kB

URL GET HTTP/2
breachforums.st/resources/roboto/Roboto-Bold.woff2
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15816, version 1.0
Size
16 kB (15816 bytes)
Hash
2735a3a69b509faf3577afd25bdf552e
8621aff863b67040010ccc183da5b9079ce6fd1d
b4d07892cde715d50bb69c1982df496385d1dfd8f9d1867c31f19a3c8634cfae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /resources/roboto/Roboto-Bold.woff2 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/cache/themes/theme3/roboto.min.css?t=1704585605
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:36 GMT
content-type: font/woff2
content-length: 15816
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: "64f863dd-3dc8"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
age: 203460
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/resources/webfonts/fa-solid-900.woff2

185.129.102.136

200 OK

150 kB

URL GET HTTP/2
breachforums.st/resources/webfonts/fa-solid-900.woff2
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150020, version 772.1280
Size
150 kB (150020 bytes)
Hash
d5e647388e2415268b700d3df2e30a0d
97f0942c6627ddd89fb62170e5cac9a2cbd6c98c
886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /resources/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/cache/themes/theme3/all.min.min.css?t=1704585605
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:37 GMT
content-type: font/woff2
content-length: 150020
last-modified: Tue, 01 Aug 2023 21:27:00 GMT
etag: "64c978a4-24a04"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
age: 203460
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/logo.png

185.129.102.136

200 OK

44 kB

URL GET HTTP/2
breachforums.st/logo.png
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
44 kB (44299 bytes)
Hash
4f98214d58bb45eb88a8291a85c2db2e
c3976263ac6f13ce0cef806820fd57f466c345b1
b1d55b4b155923b97db02fb73074cc73fa1eff02b6dffffb893440dcf05c7100

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /logo.png HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:05 GMT
content-type: image/png
content-length: 44299
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: "64f863dd-ad0b"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
age: 203491
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/logo.png

185.129.102.136

200 OK

44 kB

URL GET HTTP/2
breachforums.st/logo.png
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
44 kB (44299 bytes)
Hash
4f98214d58bb45eb88a8291a85c2db2e
c3976263ac6f13ce0cef806820fd57f466c345b1
b1d55b4b155923b97db02fb73074cc73fa1eff02b6dffffb893440dcf05c7100

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /logo.png HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:05 GMT
content-type: image/png
content-length: 44299
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: "64f863dd-ad0b"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
age: 203491
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/resources/roboto/Roboto-Regular.woff2

185.129.102.136

200 OK

16 kB

URL GET HTTP/2
breachforums.st/resources/roboto/Roboto-Regular.woff2
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15736, version 1.0
Size
16 kB (15736 bytes)
Hash
479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /resources/roboto/Roboto-Regular.woff2 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/cache/themes/theme3/roboto.min.css?t=1704585605
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:38 GMT
content-type: font/woff2
content-length: 15736
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: "64f863dd-3d78"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
age: 203460
ddg-cache-status: HIT
X-Firefox-Spdy: h2

breachforums.st/resources/roboto/Roboto-Bold.woff2

185.129.102.136

200 OK

16 kB

URL GET HTTP/2
breachforums.st/resources/roboto/Roboto-Bold.woff2
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15816, version 1.0
Size
16 kB (15816 bytes)
Hash
2735a3a69b509faf3577afd25bdf552e
8621aff863b67040010ccc183da5b9079ce6fd1d
b4d07892cde715d50bb69c1982df496385d1dfd8f9d1867c31f19a3c8634cfae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /resources/roboto/Roboto-Bold.woff2 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/cache/themes/theme3/roboto.min.css?t=1704585605
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:36 GMT
content-type: font/woff2
content-length: 15816
last-modified: Wed, 06 Sep 2023 11:34:53 GMT
etag: "64f863dd-3dc8"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
age: 203460
ddg-cache-status: HIT
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18344
Expires: Sat, 15 Jun 2024 23:32:20 GMT
Date: Sat, 15 Jun 2024 18:26:36 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18344
Expires: Sat, 15 Jun 2024 23:32:20 GMT
Date: Sat, 15 Jun 2024 18:26:36 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18344
Expires: Sat, 15 Jun 2024 23:32:20 GMT
Date: Sat, 15 Jun 2024 18:26:36 GMT
Connection: keep-alive

breachforums.st/cache/themes/theme3/all.min.css?t=1704585605

185.129.102.136

200 OK

56 kB

URL GET HTTP/2
breachforums.st/cache/themes/theme3/all.min.css?t=1704585605
IP
185.129.102.136:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Certificate
IssuerLet's Encrypt
Subjectbreachforums.st
Fingerprint44:4B:BA:A3:66:6D:71:E6:8C:30:DC:FB:D5:8E:0D:BA:D6:D9:8B:9B
ValidityMon, 03 Jun 2024 11:54:18 GMT - Sun, 01 Sep 2024 11:54:17 GMT

File type
ASCII text, with very long lines (55955), with no line terminators
Size
56 kB (55955 bytes)
Hash
a2764857cfcd83363da2ccf85643a605
c21ee26909c945e0981f31454cae93a5f7dcbb6c
57b9c97f366b1e5314585cd47abeeff5a64a4a94029954585029fc839b2bd822

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cache/themes/theme3/all.min.css?t=1704585605 HTTP/1.1
Host: breachforums.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://breachforums.st/Thread-how-2-become-a-spy?pid=603680
Cookie: __ddg1_=WoAct0uIwhDZupM8AmVh; mybb[lastvisit]=1718475995; mybb[lastactive]=1718475995; sid=76e605f9a11cdadc1751f47181212d9e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 13 Jun 2024 09:55:07 GMT
content-type: text/css
last-modified: Sun, 07 Jan 2024 00:00:05 GMT
etag: W/"6599e985-da93"
onion-location: http://breached26tezcofqla4adzyn22notfqwcac7gpbrleg4usehljwkgqd.onion
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 203494
content-length: 11683
ddg-cache-status: HIT
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (36)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN