Hello, since this db seem to be pretty hard to find i decided to upload it ! (this db was leaked on an onion site but never made up to any forum that i know)

site: 2sucres.org
lines: 7629
date: 13 december 2019
Dumped by: Avenoel (a similar forum to 2sucres) administrators
Columns: "pseudo" and "ips"
File format: .txt

Download link:

Any more information about the data? A more accurate dump date, etc.? Thanks.

(March 31, 2022, 10:08 PM)thekilob Wrote: Any more information about the data? A more accurate dump date, etc.? Thanks.

Here a text that i found on some wiki. There no much info since this was just another drama between forum.

On 13 December, 2Sucres was hacked for the first time, and then on 16 December the site was hacked again, leading the site's administration to communicate about this second hack to the sucros. The aim of the hackers was to spread panic by disclosing the IP addresses of users via a hidden service hosted behind the deep-web (a ".onion"). This hidden service also hosted a payment gateway allowing users to be blacklisted from the IP tracker in exchange for a sum of Bitcoin. The worst thing is that this gateway was functional. The perpetrators of the hack are the administrators of Avenoel.

if you want here the article for the site: https://jvflux.fr/2Sucres
(it's in french tho)

(March 31, 2022, 10:22 PM)Meleagant Wrote:

(March 31, 2022, 10:08 PM)thekilob Wrote: Any more information about the data? A more accurate dump date, etc.? Thanks.

Here a text that i found on some wiki. There no much info since this was just another drama between forum.

On 13 December, 2Sucres was hacked for the first time, and then on 16 December the site was hacked again, leading the site's administration to communicate about this second hack to the sucros. The aim of the hackers was to spread panic by disclosing the IP addresses of users via a hidden service hosted behind the deep-web (a ".onion"). This hidden service also hosted a payment gateway allowing users to be blacklisted from the IP tracker in exchange for a sum of Bitcoin. The worst thing is that this gateway was functional. The perpetrators of the hack are the administrators of Avenoel.

if you want here the article for the site: https://jvflux.fr/2Sucres
(it's in french tho)

Thanks, so this data is from the 13th, what happened on the 16th? Also... I'm not sure I understand how the data was really obtained? You're also saying 2sucres.org but apparently it was a hidden/onion site- .org was a redirection mirror then? What was the main URL? Thanks again.

(March 31, 2022, 10:27 PM)thekilob Wrote:

(March 31, 2022, 10:22 PM)Meleagant Wrote:

(March 31, 2022, 10:08 PM)thekilob Wrote: Any more information about the data? A more accurate dump date, etc.? Thanks.

Here a text that i found on some wiki. There no much info since this was just another drama between forum.

On 13 December, 2Sucres was hacked for the first time, and then on 16 December the site was hacked again, leading the site's administration to communicate about this second hack to the sucros. The aim of the hackers was to spread panic by disclosing the IP addresses of users via a hidden service hosted behind the deep-web (a ".onion"). This hidden service also hosted a payment gateway allowing users to be blacklisted from the IP tracker in exchange for a sum of Bitcoin. The worst thing is that this gateway was functional. The perpetrators of the hack are the administrators of Avenoel.

if you want here the article for the site: https://jvflux.fr/2Sucres
(it's in french tho)

Thanks, so this data is from the 13th, what happened on the 16th? Also... I'm not sure I understand how the data was really obtained? You're also saying 2sucres.org but apparently it was a hidden/onion site- .org was a redirection mirror then? What was the main URL? Thanks again.

Basically 2sucres got hacked on 13th and 16th, i don't know how they obtained the data (probably trough the admin panel) and the onion site was a resolver site where you put an 2sucres username and it shows you the ip (image below is the said website, the person is 2sucres owner)

And for obtening the list from this website, the full db was in the source, only need a little use of emeditor to separate all usernames to different lines.

(March 31, 2022, 10:33 PM)Meleagant Wrote:

(March 31, 2022, 10:27 PM)thekilob Wrote:

(March 31, 2022, 10:22 PM)Meleagant Wrote:

(March 31, 2022, 10:08 PM)thekilob Wrote: Any more information about the data? A more accurate dump date, etc.? Thanks.

Here a text that i found on some wiki. There no much info since this was just another drama between forum.

On 13 December, 2Sucres was hacked for the first time, and then on 16 December the site was hacked again, leading the site's administration to communicate about this second hack to the sucros. The aim of the hackers was to spread panic by disclosing the IP addresses of users via a hidden service hosted behind the deep-web (a ".onion"). This hidden service also hosted a payment gateway allowing users to be blacklisted from the IP tracker in exchange for a sum of Bitcoin. The worst thing is that this gateway was functional. The perpetrators of the hack are the administrators of Avenoel.

if you want here the article for the site: https://jvflux.fr/2Sucres
(it's in french tho)

Thanks, so this data is from the 13th, what happened on the 16th? Also... I'm not sure I understand how the data was really obtained? You're also saying 2sucres.org but apparently it was a hidden/onion site- .org was a redirection mirror then? What was the main URL? Thanks again.

Basically 2sucres got hacked on 13th and 16th, i don't know how they obtained the data (probably trough the admin panel) and the onion site was a resolver site where you put an 2sucres username and it shows you the ip (image below is the said website, the person is 2sucres owner)

Image unavailable

And for obtening the list from this website, the full db was in the source, only need a little use of emeditor to separate all usernames to different lines.

Thanks for clarifying, pretty cool. So is there more than just a txt file you can share? Also, you're sure the txt file is from the hack on the 13th and not the 16th? Very sad there isn't much information.

thanks

Thanks a lot!

(March 31, 2022, 11:44 PM)thekilob Wrote:

(March 31, 2022, 10:33 PM)Meleagant Wrote:

(March 31, 2022, 10:27 PM)thekilob Wrote:

(March 31, 2022, 10:22 PM)Meleagant Wrote:

(March 31, 2022, 10:08 PM)thekilob Wrote: Any more information about the data? A more accurate dump date, etc.? Thanks.

Here a text that i found on some wiki. There no much info since this was just another drama between forum.

On 13 December, 2Sucres was hacked for the first time, and then on 16 December the site was hacked again, leading the site's administration to communicate about this second hack to the sucros. The aim of the hackers was to spread panic by disclosing the IP addresses of users via a hidden service hosted behind the deep-web (a ".onion"). This hidden service also hosted a payment gateway allowing users to be blacklisted from the IP tracker in exchange for a sum of Bitcoin. The worst thing is that this gateway was functional. The perpetrators of the hack are the administrators of Avenoel.

if you want here the article for the site: https://jvflux.fr/2Sucres
(it's in french tho)

Thanks, so this data is from the 13th, what happened on the 16th? Also... I'm not sure I understand how the data was really obtained? You're also saying 2sucres.org but apparently it was a hidden/onion site- .org was a redirection mirror then? What was the main URL? Thanks again.

Basically 2sucres got hacked on 13th and 16th, i don't know how they obtained the data (probably trough the admin panel) and the onion site was a resolver site where you put an 2sucres username and it shows you the ip (image below is the said website, the person is 2sucres owner)

Image unavailable

And for obtening the list from this website, the full db was in the source, only need a little use of emeditor to separate all usernames to different lines.

Thanks for clarifying, pretty cool. So is there more than just a txt file you can share? Also, you're sure the txt file is from the hack on the 13th and not the 16th? Very sad there isn't much information.

i created an txt file and put the db (that was in the source code of the resolver) but the whole thing was on one line. Some i had to replace the seperator between the users (];[) to the same thing but with a line down on emeditor, otherwise the whole 7k users will be on one single line.

(April 1, 2022, 08:57 AM)Meleagant Wrote:

(March 31, 2022, 11:44 PM)thekilob Wrote:

(March 31, 2022, 10:33 PM)Meleagant Wrote:

(March 31, 2022, 10:27 PM)thekilob Wrote:

(March 31, 2022, 10:22 PM)Meleagant Wrote: Here a text that i found on some wiki. There no much info since this was just another drama between forum.
if you want here the article for the site: https://jvflux.fr/2Sucres
(it's in french tho)

Thanks, so this data is from the 13th, what happened on the 16th? Also... I'm not sure I understand how the data was really obtained? You're also saying 2sucres.org but apparently it was a hidden/onion site- .org was a redirection mirror then? What was the main URL? Thanks again.

Basically 2sucres got hacked on 13th and 16th, i don't know how they obtained the data (probably trough the admin panel) and the onion site was a resolver site where you put an 2sucres username and it shows you the ip (image below is the said website, the person is 2sucres owner)

Image unavailable

And for obtening the list from this website, the full db was in the source, only need a little use of emeditor to separate all usernames to different lines.

Thanks for clarifying, pretty cool. So is there more than just a txt file you can share? Also, you're sure the txt file is from the hack on the 13th and not the 16th? Very sad there isn't much information.

i created an txt file and put the db (that was in the source code of the resolver) but the whole thing was on one line. Some i had to replace the seperator between the users (];[) to the same thing but with a line down on emeditor, otherwise the whole 7k users will be on one single line.

Could you please share the original, original data? I can do whatever parsing I want myself, thank you very much, I am looking for original untouched data, I don't care if skids on here don't know what to do with it.