Report - dm9.biz/?auf=meydayzsmm5domjvf42tanjpge2s6yrvhftdomjwgyxtenrpge3tamrqha2tambq&p=l&sub1=&sub2=&sub3=&sub4=&cpc=0&cpm=0

Report Overview

Visited public
2023-12-09 01:25:51
Tags
URL
dm9.biz/?auf=meydayzsmm5domjvf42tanjpge2s6yrvhftdomjwgyxtenrpge3tamrqha2tambq&p=l&sub1=&sub2=&sub3=&sub4=&cpc=0&cpm=0
Finishing URL
w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166
IP / ASN
164.90.194.65
#14061 DIGITALOCEAN-ASN
Title
NEWS

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
w-news.biz	unknown	2023-05-29	2023-06-05 04:30:32	2023-12-08 16:57:57	1.6 kB	103 kB	172.67.139.171
dm9.biz	unknown	2022-10-06	2021-01-23 21:22:17	2023-12-06 06:20:17	585 B	58 kB	164.90.194.65
dr6.biz	unknown	2022-10-06	2022-10-06 11:47:09	2023-12-01 12:23:20	419 B	461 B	185.177.92.30
tqnqt.rigelbetelgeuse.top	unknown	2023-05-11	2023-06-15 16:51:30	2023-12-08 16:57:56	552 B	675 B	172.67.205.133
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-08 05:13:57	971 B	61 kB	151.101.65.229
report1.biz	unknown	2023-05-29	2023-05-29 16:20:09	2023-12-08 19:00:37	13 kB	5.1 MB	104.22.68.143
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-08 05:09:48	904 B	5.4 kB	104.17.24.14
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-08 08:16:59	441 B	31 kB	151.101.130.137

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-09 01:25:38	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:38	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:38	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:38	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:39	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile
2023-12-09 01:25:39	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:39	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:39	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:39	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:39	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-12-09 01:25:39	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js	ScriptElement	4.4 kB	2023-03-07	2025-05-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:58 Last Seen2025-05-07 06:55 Times Seen298 Hash 50ac9adc7d65a32fd2f895ffcec02b29 03ced87dc7dcb66e14ef8c8a16a5b0d09d047a88 35ecbd48276f3dec75c9f9c8f9f638ad2aeb5b74c387a731cefade25466e9ffb Loading...

	w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166	ScriptElement	477 B	2023-07-07	2025-04-06
Pretty URL w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 IP 172.67.139.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-07 17:42 Last Seen2025-04-06 21:29 Times Seen96 Hash 39e0f16d3046858b29bca91f0572294a d0b056d8137ea3044edd049e1a45d4a9d723d80c c20b4aabaaa71b4781d58d80fd09110c2798c9e9675e5f5eabf168fa4ca2b18c Loading...

	w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166	ScriptElement	2.4 kB	2023-10-21	2024-08-21
Pretty URL w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 IP 172.67.139.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 18:24 Last Seen2024-08-21 03:55 Times Seen8 Hash c7c7c846197cb7ccda4f04824615fd4d dac173780546686ebda534815a0fce2dc1c0d0a8 0243d5e4926a40cae2688da886ace2d85dadf271c5a35936347ba11f0e697f65 Loading...

	dr6.biz/?te=mvtdgmtcgm5ha3ddf43tonzu	ScriptElement	10 B	2023-03-07	2025-05-11
Pretty URL dr6.biz/?te=mvtdgmtcgm5ha3ddf43tonzu IP 185.177.92.30 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 08:53 Times Seen2106 Hash f495e69f2e9edc75eeae7dd3ea78a747 a89e38bbe70fa2de5db9d578975abd4e9dcda52e 8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c Loading...

	code.jquery.com/jquery-3.7.0.min.js	ScriptElement	88 kB	2023-05-12	2025-05-11
Pretty URL code.jquery.com/jquery-3.7.0.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 23:07 Last Seen2025-05-11 05:37 Times Seen6007 Hash e6c2415c0ace414e5153670314ce99a9 5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6 d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8 Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha3/dist/js/bootstrap.bundle.min.js	ScriptElement	81 kB	2023-04-09	2025-05-10
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha3/dist/js/bootstrap.bundle.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-09 07:05 Last Seen2025-05-10 18:21 Times Seen1583 Hash 78c4cd0c84838bea16844c9f9ef24b83 8cd7971318371ab3d16379df6cfb254a5c649fca ea8fe021a4ace4f6786fecc418f70b658fc2dc02d136e8fe5c6ab6b62a46d5d0 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js	ScriptElement	5.0 kB	2023-03-07	2025-05-08
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 06:02 Times Seen602 Hash 2a58139bca6dd26694155d0a01c47438 3323fe0cd5de0ce631c9ddfd7caab32578c6ba01 ecf4a6176a23634e19ed80b01b9c30bc7f9b754c55d4f3c220e46fbd3607a3b3 Loading...

HTTP Transactions (35)

	URL	IP	Response	Size
	tqnqt.rigelbetelgeuse.top/?pl=jPYNfiJs70uLjptRAgGw_A&sub_id=feed9715&click_id=b59f7166	172.67.205.133	302 Found	0 B
URL User Request GET HTTP/2 tqnqt.rigelbetelgeuse.top/?pl=jPYNfiJs70uLjptRAgGw_A&sub_id=feed9715&click_id=b59f7166 IP 172.67.205.133:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrigelbetelgeuse.top Fingerprint65:5D:90:AB:39:D0:9E:24:3C:9E:F7:0B:E3:54:6D:63:1E:69:A3:08 ValiditySat, 04 Nov 2023 21:11:48 GMT - Fri, 02 Feb 2024 21:11:47 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?pl=jPYNfiJs70uLjptRAgGw_A&sub_id=feed9715&click_id=b59f7166 HTTP/1.1 Host: tqnqt.rigelbetelgeuse.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Sat, 09 Dec 2023 01:25:32 GMT content-length: 0 location: https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 cache-control: max-age=0, no-cache, no-store, must-revalidate cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kpe5WbyYjwmYbcjmqg9kd3NUJXeFCuJZOws74jZaHAJezO0EdmixZWyHVYxTwPFldKP%2FNJNsj3LL7uRxVJJlAScZMwd63%2BRaG%2BRrITAL5QtcHuMH%2BG0Hea44AJAs%2FQOe4Yfuxo1hZuBPX56n"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8329746c5abe5689-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha3/dist/css/bootstrap.min.css	151.101.65.229	200 OK	35 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha3/dist/css/bootstrap.min.css IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type Unicode text, UTF-8 text, with very long lines (65335) Size 35 kB (34794 bytes) Hash d603cfa239a34ac65af566681e7aa3e7 4af3d7e15a6a380c6cbabba42e9adf330b49d58f 16ee7f3d53462650bbd32e263c48c0ea759574fcf620c681ad719008912c461a HTTP Headers `GET /npm/bootstrap@5.3.0-alpha3/dist/css/bootstrap.min.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://w-news.biz DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: text/css; charset=utf-8 x-jsd-version: 5.3.0-alpha3 x-jsd-version-type: version etag: W/"38cf3-SvPX4VpqOAxsurukLprfMwtJ1Y8" content-encoding: br accept-ranges: bytes date: Sat, 09 Dec 2023 01:25:32 GMT age: 3695413 x-served-by: cache-fra-eddf8230067-FRA, cache-bma1656-BMA x-cache: MISS, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 34794 X-Firefox-Spdy: h2

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8xL2E1LzJmMS8xYTUyZjEyOWNlNDAyZWFiNTg0YTI0NzM2MWM0NWUxMS5wbmc=	104.22.68.143	200 OK	39 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8xL2E1LzJmMS8xYTUyZjEyOWNlNDAyZWFiNTg0YTI0NzM2MWM0NWUxMS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Size 39 kB (39301 bytes) Hash 6d4aafc831fbea3df2a9955a7f6865bb 8bdc7f1dbdbb506e51cace64684edacb1cc70239 8571befee4955b32962d11d83428d9e030c5f50217a2a117999554e27192811a HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8xL2E1LzJmMS8xYTUyZjEyOWNlNDAyZWFiNTg0YTI0NzM2MWM0NWUxMS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:32 GMT content-type: image/png content-length: 39301 last-modified: Fri, 16 Jun 2023 11:14:38 GMT etag: "648c441e-9985" access-control-allow-origin: * expires: Sat, 15 Sep 2018 11:44:19 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 342633 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974706b580d36-ARN X-Firefox-Spdy: h2`

	cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js	104.17.24.14	200 OK	1.3 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js IP 104.17.24.14:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (4266) Size 1.3 kB (1296 bytes) Hash 50ac9adc7d65a32fd2f895ffcec02b29 03ced87dc7dcb66e14ef8c8a16a5b0d09d047a88 35ecbd48276f3dec75c9f9c8f9f638ad2aeb5b74c387a731cefade25466e9ffb HTTP Headers `GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:32 GMT content-type: application/javascript; charset=utf-8 content-length: 1296 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec3-113c" last-modified: Mon, 04 May 2020 16:11:47 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1375421 expires: Thu, 28 Nov 2024 01:25:32 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YuKxV8crdKGKPyKTYOu%2F85wtjY%2BWGBHVete4WeJz3oeJGhi1cvTIYfYgQ8ohRnSCnUmlxGzOemU2uV647Nr6qT1eYk%2Fn4xOPzVfYbLkYJym2rSF1M95vVvZptFhqH7lHBVtVj5ts"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 832974707bbd712e-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js	104.17.24.14	200 OK	2.1 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js IP 104.17.24.14:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (4890) Size 2.1 kB (2090 bytes) Hash 2a58139bca6dd26694155d0a01c47438 3323fe0cd5de0ce631c9ddfd7caab32578c6ba01 ecf4a6176a23634e19ed80b01b9c30bc7f9b754c55d4f3c220e46fbd3607a3b3 HTTP Headers `GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:32 GMT content-type: application/javascript; charset=utf-8 content-length: 2090 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec3-139e" last-modified: Mon, 04 May 2020 16:11:47 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1273987 expires: Thu, 28 Nov 2024 01:25:32 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=69aZhPVGC%2Bkayp0OjHO%2BMzIwWVLlD2bzGQib5S3CP3adFczWBDMcVaonwH9BNGjHfVj1PjPUtQl%2FPXoKOmSxVU0SNgGzqDY383yZN7LR%2FRdx8WAF4l3mwwTP08Y3T0vobFWm%2FOnt"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 832974708bc2712e-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha3/dist/js/bootstrap.bundle.min.js	151.101.65.229	200 OK	25 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha3/dist/js/bootstrap.bundle.min.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text, with very long lines (65292) Size 25 kB (24750 bytes) Hash 78c4cd0c84838bea16844c9f9ef24b83 8cd7971318371ab3d16379df6cfb254a5c649fca ea8fe021a4ace4f6786fecc418f70b658fc2dc02d136e8fe5c6ab6b62a46d5d0 HTTP Headers `GET /npm/bootstrap@5.3.0-alpha3/dist/js/bootstrap.bundle.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://w-news.biz DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 5.3.0-alpha3 x-jsd-version-type: version etag: W/"13ac2-jNeXExg3GrPRY3nfbPslSlxkn8o" content-encoding: br accept-ranges: bytes date: Sat, 09 Dec 2023 01:25:32 GMT age: 5163558 x-served-by: cache-fra-eddf8230059-FRA, cache-bma1656-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 24750 X-Firefox-Spdy: h2

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80L2I5LzM4Ny80YjkzODc2ZDc0NTQ3MDg2NTJhNTFhOWVhMjVmNzM3ZC5wbmc=	104.22.68.143	200 OK	52 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80L2I5LzM4Ny80YjkzODc2ZDc0NTQ3MDg2NTJhNTFhOWVhMjVmNzM3ZC5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Size 52 kB (51997 bytes) Hash 607d52f8ece2d674c0f0418ee3f089c6 84b633ac94c900cb8c7f3e26d3f04e06ae1bbbd6 c916dd790d3080e2a1ff16c3d50b5450e651e272e5eb3f25b01a48f1f0f485de HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80L2I5LzM4Ny80YjkzODc2ZDc0NTQ3MDg2NTJhNTFhOWVhMjVmNzM3ZC5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:32 GMT content-type: image/png content-length: 51997 last-modified: Fri, 16 Jun 2023 11:24:11 GMT etag: "648c465b-cb1d" access-control-allow-origin: * expires: Mon, 24 Sep 2018 08:13:27 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 1531 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974706b590d36-ARN X-Firefox-Spdy: h2`

	code.jquery.com/jquery-3.7.0.min.js	151.101.130.137	200 OK	30 kB
URL GET HTTP/2 code.jquery.com/jquery-3.7.0.min.js IP 151.101.130.137:443 ASN #54113 FASTLY Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerSectigo Limited Subject.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (65447) Size 30 kB (30308 bytes) Hash e6c2415c0ace414e5153670314ce99a9 5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6 d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8 HTTP Headers `GET /jquery-3.7.0.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://w-news.biz DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: W/"28feccc0-155a6" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sat, 09 Dec 2023 01:25:32 GMT age: 7282933 x-served-by: cache-lga13623-LGA, cache-bma1657-BMA x-cache: HIT, HIT x-cache-hits: 73, 9650 x-timer: S1702085133.886008,VS0,VE0 vary: Accept-Encoding content-length: 30308 X-Firefox-Spdy: h2

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iLzNiLzNhZi9iM2IzYWYyZmY4MjUzZGZhYTdlNmM0ODI4NzgyMDEyMC5wbmc=	104.22.68.143	200 OK	81 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iLzNiLzNhZi9iM2IzYWYyZmY4MjUzZGZhYTdlNmM0ODI4NzgyMDEyMC5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Size 81 kB (81016 bytes) Hash 26153dfbab38d7a7e3c509f00a29895b 6359d2f11ed7e6c2a924a56be4cb922611125f4e 3522c9986f90d1e13e587e6a5dff0d244024c2a7700f28746edc3e4ad22d1b10 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iLzNiLzNhZi9iM2IzYWYyZmY4MjUzZGZhYTdlNmM0ODI4NzgyMDEyMC5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:32 GMT content-type: image/png content-length: 81016 last-modified: Fri, 16 Jun 2023 11:17:49 GMT etag: "648c44dd-13c78" access-control-allow-origin: * expires: Sun, 16 Sep 2018 14:23:54 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 1530 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974706b5a0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9lL2M5L2RlYi9lYzlkZWJlYzliOGRlYjdlM2ZiOGI4NDNjNjFjNDEyYi5wbmc=	104.22.68.143	200 OK	72 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9lL2M5L2RlYi9lYzlkZWJlYzliOGRlYjdlM2ZiOGI4NDNjNjFjNDEyYi5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Size 72 kB (72335 bytes) Hash f9416d4d920a5322efe1ac91c0b98082 daaab4b105ae48cda4514a1d70a476d92d1f2de7 c8999e4300f9fdc50fdcdc4250b98e3cf3850b61c5481d76b4e693a1979ed3f1 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9lL2M5L2RlYi9lYzlkZWJlYzliOGRlYjdlM2ZiOGI4NDNjNjFjNDEyYi5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:32 GMT content-type: image/png content-length: 72335 last-modified: Fri, 16 Jun 2023 11:10:30 GMT etag: "648c4326-11a8f" access-control-allow-origin: * expires: Mon, 27 Aug 2018 05:25:44 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 941998 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974707b5f0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iL2M4L2ZiNC9iYzhmYjQxMzVjYjIyZmNmZTdjYjliNWJhNDYyNDE0Ny5wbmc=	104.22.68.143	200 OK	219 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iL2M4L2ZiNC9iYzhmYjQxMzVjYjIyZmNmZTdjYjliNWJhNDYyNDE0Ny5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 219 kB (219213 bytes) Hash b270b4d72291483a8f97066e3b66f8a1 43f02eb62ff4ae125c9d3736b38d23911d3483c5 b44d3074ef9148085031ecd207a697e035bbfa12d108cf7f81a62a0c30645781 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iL2M4L2ZiNC9iYzhmYjQxMzVjYjIyZmNmZTdjYjliNWJhNDYyNDE0Ny5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 219213 last-modified: Fri, 16 Jun 2023 10:32:46 GMT etag: "648c3a4e-3584d" access-control-allow-origin: * expires: Fri, 24 Aug 2018 14:18:41 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 2412342 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83297472cbec0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8yLzhjLzgwMi8yOGM4MDIwMTQ5Yzk4ZjhjMjE2NDFlNjlkMDMxNWQ3ZS5wbmc=	104.22.68.143	200 OK	330 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8yLzhjLzgwMi8yOGM4MDIwMTQ5Yzk4ZjhjMjE2NDFlNjlkMDMxNWQ3ZS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 330 kB (329972 bytes) Hash ed0b05459b6b9c82fd4c3d33071447fe 1d385218441119247b68f401fb43373efa841553 1ae10f54cce16ad7d83074e7e629356818a32febd03c98c2154a62a52e089cb5 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8yLzhjLzgwMi8yOGM4MDIwMTQ5Yzk4ZjhjMjE2NDFlNjlkMDMxNWQ3ZS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 329972 last-modified: Fri, 16 Jun 2023 10:22:45 GMT etag: "648c37f5-508f4" access-control-allow-origin: * expires: Fri, 24 Aug 2018 16:44:31 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 2148560 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83297472dbee0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy84L2QxLzkzYy84ZDE5M2M0MGFjYzI0YmJkYTRkN2E3NDQyYjlhZDFmOC5wbmc=	104.22.68.143	200 OK	179 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy84L2QxLzkzYy84ZDE5M2M0MGFjYzI0YmJkYTRkN2E3NDQyYjlhZDFmOC5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 179 kB (178632 bytes) Hash 63eb6fa77bc52f4e2003bcd6d7b4d4ba 6abc279e73e456a9c21f44d0d18b10507fa2febf 84ebe60a32c7c51f9d67860690fda50e4ac4870807ac94dc8824675f05123295 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy84L2QxLzkzYy84ZDE5M2M0MGFjYzI0YmJkYTRkN2E3NDQyYjlhZDFmOC5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 178632 last-modified: Fri, 16 Jun 2023 11:47:43 GMT etag: "648c4bdf-2b9c8" access-control-allow-origin: * expires: Fri, 17 Aug 2018 12:22:34 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 2145846 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83297472dbef0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80LzFiLzkwNy80MWI5MDc4MTg2OWE1MmVmYTYwYTU5YWJiMmQ3NzljZi5wbmc=	104.22.68.143	200 OK	168 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80LzFiLzkwNy80MWI5MDc4MTg2OWE1MmVmYTYwYTU5YWJiMmQ3NzljZi5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 168 kB (168517 bytes) Hash dfdbecb1be090dab2d41780498bdd643 f6e7506831241760603b2da436655732fa564e97 9d4749b0f80b4fa9927f4e9e82d4d916b6b4e2896169954df49a7c81bef0671e HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80LzFiLzkwNy80MWI5MDc4MTg2OWE1MmVmYTYwYTU5YWJiMmQ3NzljZi5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 168517 last-modified: Fri, 16 Jun 2023 09:24:37 GMT etag: "648c2a55-29245" access-control-allow-origin: * expires: Fri, 24 Aug 2018 11:46:23 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 934589 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83297472ebf00d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2Q5LzllZi82ZDk5ZWY2YTE0ZmRmYzM1NGJiY2JhN2M0MTBkMTJhNC5wbmc=	104.22.68.143	200 OK	257 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2Q5LzllZi82ZDk5ZWY2YTE0ZmRmYzM1NGJiY2JhN2M0MTBkMTJhNC5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 257 kB (256917 bytes) Hash baba48fa9430cf2f85621a53bf4efa3a d1f2fb9f3f1da4fdd48b50913592997b1023b981 e5b0cccce193b4b28e1aa930231f609714428a6e6d7e671dad008266f89a5b51 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2Q5LzllZi82ZDk5ZWY2YTE0ZmRmYzM1NGJiY2JhN2M0MTBkMTJhNC5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 256917 last-modified: Fri, 16 Jun 2023 11:35:42 GMT etag: "648c490e-3eb95" access-control-allow-origin: * expires: Sat, 18 Aug 2018 13:30:54 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 2331392 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83297472fbf50d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9kLzM3LzhhNS9kMzc4YTUxYTc3YTc5MmM0ZDgwOTM0Nzk0NGNlY2QzYS5wbmc=	104.22.68.143	200 OK	291 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9kLzM3LzhhNS9kMzc4YTUxYTc3YTc5MmM0ZDgwOTM0Nzk0NGNlY2QzYS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 291 kB (290561 bytes) Hash 998009ecb043854f020c850219d6b3ed c7bd2c742f499f5d8da291ef1246b9df3c1013bd 36ccc35fc8caf2b9490f1c110ad1e3eb433a2010a31a86c9dbd881b73511c4f1 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9kLzM3LzhhNS9kMzc4YTUxYTc3YTc5MmM0ZDgwOTM0Nzk0NGNlY2QzYS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 290561 last-modified: Fri, 16 Jun 2023 09:09:23 GMT etag: "648c26c3-46f01" access-control-allow-origin: * expires: Mon, 30 Jul 2018 19:46:10 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 2588065 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83297472fbf60d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9hLzdkL2M5YS9hN2RjOWE4MDBiNmNjYWQzOGFkNzBhNzdiMDE1NGRlZi5wbmc=	104.22.68.143	200 OK	217 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9hLzdkL2M5YS9hN2RjOWE4MDBiNmNjYWQzOGFkNzBhNzdiMDE1NGRlZi5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 217 kB (216584 bytes) Hash 133bfd0911da77004ac3d78a95c94e89 1c9cd5b30d46d2716cbcb371bcaee1036d40e45e d217877538796dd62f857ca5358f635bad97fee51466e9f6b5423554b0b3b351 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9hLzdkL2M5YS9hN2RjOWE4MDBiNmNjYWQzOGFkNzBhNzdiMDE1NGRlZi5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 216584 last-modified: Fri, 16 Jun 2023 11:21:59 GMT etag: "648c45d7-34e08" access-control-allow-origin: * expires: Fri, 17 Aug 2018 12:13:22 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 2245672 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83297472fbf70d36-ARN X-Firefox-Spdy: h2`

	w-news.biz/favicon.ico	172.67.139.171	204 No Content	0 B
URL GET HTTP/3 w-news.biz/favicon.ico IP 172.67.139.171:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerGoogle Trust Services LLC Subjectw-news.biz Fingerprint49:E9:D9:98:63:2E:25:1B:58:21:14:B1:B6:25:15:EF:D5:3E:B8:BB ValidityWed, 22 Nov 2023 11:56:34 GMT - Tue, 20 Feb 2024 11:56:33 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /favicon.ico HTTP/1.1 Host: w-news.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Cookie: uuid=183bef33-650b-4f3b-a685-5a1743a5b21e Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 204 No Content date: Sat, 09 Dec 2023 01:25:33 GMT accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f4J8xV3y8%2F3LVP9h3e0ZuG7ETsaRMZqwJsjrMs2%2BQHmMPtCtnQ6DY%2FZszGOWwydwof0mCL2cG3rfgtX%2BMwcm0725WQgCYKVfp%2BB7bvZzSIf9Ir2fHp4twuRI6lpT"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 83297472bc855695-OSL alt-svc: h3=":443"; ma=86400

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9kLzUyL2NmNi9kNTJjZjZjOTRmYWY1ZmEzOGNiOTQzZjM1ODQ2MzE0MS5wbmc=	104.22.68.143	200 OK	260 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9kLzUyL2NmNi9kNTJjZjZjOTRmYWY1ZmEzOGNiOTQzZjM1ODQ2MzE0MS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 260 kB (260089 bytes) Hash e66da6143cc869734aa8600e8d4e71f4 6a7b064da3094b84a57f75291fe857d0ecb9bead dcfa155fee67f94b423a3d0620cf972290a5947d4dc9a1283e5cc8b64508a37c HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9kLzUyL2NmNi9kNTJjZjZjOTRmYWY1ZmEzOGNiOTQzZjM1ODQ2MzE0MS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 260089 last-modified: Fri, 16 Jun 2023 09:32:19 GMT etag: "648c2c23-3f7f9" access-control-allow-origin: * expires: Fri, 24 Aug 2018 11:30:55 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 2402115 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974732c010d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9lLzdhLzE2Zi9lN2ExNmZjYTlhNGVlMDFmOTE0Mzg2NzE2ZGZhNTg5MS5wbmc=	104.22.68.143	200 OK	161 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9lLzdhLzE2Zi9lN2ExNmZjYTlhNGVlMDFmOTE0Mzg2NzE2ZGZhNTg5MS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 161 kB (161296 bytes) Hash 7f0d1d663fdc5d9111ec32c9aac714ca 6aded51256261b40868e6e95ea3ad8a0bde7d401 dd6e8c58b977a511c813d792cc84c88e0ea3d5497edbb2b132b0581503cae7c5 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9lLzdhLzE2Zi9lN2ExNmZjYTlhNGVlMDFmOTE0Mzg2NzE2ZGZhNTg5MS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 161296 last-modified: Wed, 21 Jun 2023 06:42:04 GMT etag: "64929bbc-27610" access-control-allow-origin: * expires: Sun, 16 Sep 2018 13:35:13 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 120436 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974733c0a0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy81Lzg4L2QyNS81ODhkMjVkNzQ3YzNjZDM3ODIxNzVhZGZkMjhlMDA1Yy5wbmc=	104.22.68.143	200 OK	250 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy81Lzg4L2QyNS81ODhkMjVkNzQ3YzNjZDM3ODIxNzVhZGZkMjhlMDA1Yy5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 250 kB (249779 bytes) Hash 1cb6c0f0c46400ca1e12fb15a4943916 b9766949b16c3ad18c3dffa01bf420032ceef20c 2b6efa8d725b4e6c43d555f9563fe24a5e2be60f4b2bf571b3fbf32e612c4b41 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy81Lzg4L2QyNS81ODhkMjVkNzQ3YzNjZDM3ODIxNzVhZGZkMjhlMDA1Yy5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 249779 last-modified: Wed, 21 Jun 2023 06:20:23 GMT etag: "649296a7-3cfb3" access-control-allow-origin: * expires: Sat, 25 Aug 2018 12:58:44 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 934984 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974737c2d0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zLzNlLzUyMC8zM2U1MjAyZGMxMzlhOWFiNzc1M2U1OTJhMzEwMzhiMy5wbmc=	104.22.68.143	200 OK	308 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zLzNlLzUyMC8zM2U1MjAyZGMxMzlhOWFiNzc1M2U1OTJhMzEwMzhiMy5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 308 kB (307943 bytes) Hash 4a0b089336c08207615a1f9e991a6aa9 7b6761ea8620eb9d4b4e61af1a112b1cb5367450 ea0f0cd76490b21efd220109ff9f19bcb77a4f78394a64a142953ddae319b12b HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zLzNlLzUyMC8zM2U1MjAyZGMxMzlhOWFiNzc1M2U1OTJhMzEwMzhiMy5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 307943 last-modified: Wed, 21 Jun 2023 06:48:00 GMT etag: "64929d20-4b2e7" access-control-allow-origin: * expires: Fri, 07 Sep 2018 08:10:18 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 935018 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974740c450d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2ZlLzBhZC82ZmUwYWQ2YTBlNTFkMjJjYmE3ZWQwNGRhZDFlMzY2ZC5wbmc=	104.22.68.143	200 OK	184 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2ZlLzBhZC82ZmUwYWQ2YTBlNTFkMjJjYmE3ZWQwNGRhZDFlMzY2ZC5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 184 kB (183824 bytes) Hash 5e79bad98e82e9b4e7d17010a7866d72 22d080029e83c23ecb49d0e26f6e913608d80187 95adbeccd8ef04602c2630ca15959b76a608dcff5cc408b350b6129edeea2faa HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2ZlLzBhZC82ZmUwYWQ2YTBlNTFkMjJjYmE3ZWQwNGRhZDFlMzY2ZC5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 183824 last-modified: Wed, 21 Jun 2023 06:46:14 GMT etag: "64929cb6-2ce10" access-control-allow-origin: * expires: Mon, 27 Aug 2018 15:36:28 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 2150666 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974741c470d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zL2Y0LzQwNS8zZjQ0MDU0NzA4YzFkM2NkOTIwMWY3YTU5YmVmOGE2Ni5wbmc=	104.22.68.143	200 OK	370 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zL2Y0LzQwNS8zZjQ0MDU0NzA4YzFkM2NkOTIwMWY3YTU5YmVmOGE2Ni5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 370 kB (369876 bytes) Hash 0eea8098dd20bd8d7f76065adc7ad3e2 e2b0c517950974533e72bdc12a1c4897b1280c22 a3ced9c4bf01e2385e008c9812c3127cce398908d30e0afa2bb8c929de0bc6a4 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zL2Y0LzQwNS8zZjQ0MDU0NzA4YzFkM2NkOTIwMWY3YTU5YmVmOGE2Ni5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 369876 last-modified: Wed, 21 Jun 2023 05:44:12 GMT etag: "64928e2c-5a4d4" access-control-allow-origin: * expires: Fri, 17 Aug 2018 17:38:25 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 2224029 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974742c4b0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy85LzU5L2JjMi85NTliYzJjZTJlMmUxYzJkYzdjOTNiOTQ0NGM5NDNkZS5wbmc=	104.22.68.143	200 OK	143 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy85LzU5L2JjMi85NTliYzJjZTJlMmUxYzJkYzdjOTNiOTQ0NGM5NDNkZS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 143 kB (143414 bytes) Hash dd97893d65f471b6b99fa2bb5cef3420 d919ade526c320c8d07943415bc8476554cfd5d6 e3ed536286b863c56cde223bb02b2050d9c27f685c177713247ac32c9b7a2a7f HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy85LzU5L2JjMi85NTliYzJjZTJlMmUxYzJkYzdjOTNiOTQ0NGM5NDNkZS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 143414 last-modified: Wed, 21 Jun 2023 06:50:18 GMT etag: "64929daa-23036" access-control-allow-origin: * expires: Sat, 25 Aug 2018 20:12:43 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 1321063 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974744c4e0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2NlL2FmZi82Y2VhZmYyM2M2ODE1NzRmMWE4ZjZhMWI3YjdhYjZmYy5wbmc=	104.22.68.143	200 OK	280 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2NlL2FmZi82Y2VhZmYyM2M2ODE1NzRmMWE4ZjZhMWI3YjdhYjZmYy5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 280 kB (280256 bytes) Hash eac09400220804050073a89026c00b11 85aad4eb50b00fe32e1f17a60f8c731088609c36 60dc62494b617231ec07c123e185659245da54f4f7cea07145a2e776033c847c HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy82L2NlL2FmZi82Y2VhZmYyM2M2ODE1NzRmMWE4ZjZhMWI3YjdhYjZmYy5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 280256 last-modified: Wed, 21 Jun 2023 06:43:53 GMT etag: "64929c29-446c0" access-control-allow-origin: * expires: Fri, 17 Aug 2018 17:38:25 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 815199 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974744c4d0d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8xLzI0LzI3OS8xMjQyNzkwMTNjZTlmOTM5NjkxOGFhMzZkOTdlMGJhNC5wbmc=	104.22.68.143	200 OK	234 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8xLzI0LzI3OS8xMjQyNzkwMTNjZTlmOTM5NjkxOGFhMzZkOTdlMGJhNC5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 234 kB (234113 bytes) Hash 0999b989d7da7f2f2c06adefc1e8ba68 9e8fd587518aee2512c2f0f52844ee788cad65f2 896d1c64394989a98e563705ddbbdb736c34a65ef006c480fe91506770b3023a HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8xLzI0LzI3OS8xMjQyNzkwMTNjZTlmOTM5NjkxOGFhMzZkOTdlMGJhNC5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 234113 last-modified: Wed, 21 Jun 2023 06:49:32 GMT etag: "64929d7c-39281" access-control-allow-origin: * expires: Fri, 14 Sep 2018 16:54:54 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 830706 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974745c510d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zLzlkL2YwMi8zOWRmMDIwY2FhZjc3NjI5Y2ZlOTczYTZlYjc4ZWE0MS5wbmc=	104.22.68.143	200 OK	245 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zLzlkL2YwMi8zOWRmMDIwY2FhZjc3NjI5Y2ZlOTczYTZlYjc4ZWE0MS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 245 kB (244732 bytes) Hash 69960a70034dd2fc6eb4fa8de8d717c5 4f7d67396a6edc87bca3b341e8ef6518d2f92ada 0e64f83fa8262881cde9f1f703a03e2d06864f8cb4dd17401521b313cb6b837d HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy8zLzlkL2YwMi8zOWRmMDIwY2FhZjc3NjI5Y2ZlOTczYTZlYjc4ZWE0MS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 244732 last-modified: Wed, 21 Jun 2023 06:43:09 GMT etag: "64929bfd-3bbfc" access-control-allow-origin: * expires: Wed, 12 Sep 2018 06:24:00 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 910146 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974745c520d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9mL2FhL2I5Ny9mYWFiOTcwMTRlMDBkNmQ2NDZhMGVhMGMxNzI5ZWQ3ZC5wbmc=	104.22.68.143	200 OK	191 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9mL2FhL2I5Ny9mYWFiOTcwMTRlMDBkNmQ2NDZhMGVhMGMxNzI5ZWQ3ZC5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 191 kB (190581 bytes) Hash bba257547433f29a15c83588f30281b5 1546a7be10ad11092452a05783620d33bf9de238 728373f3fca897e17a6d223a119b0388b84218f8a286968612de744f30e6b724 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9mL2FhL2I5Ny9mYWFiOTcwMTRlMDBkNmQ2NDZhMGVhMGMxNzI5ZWQ3ZC5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 190581 last-modified: Wed, 21 Jun 2023 06:45:40 GMT etag: "64929c94-2e875" access-control-allow-origin: * expires: Sun, 26 Aug 2018 15:49:04 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 2242279 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974748c630d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80LzIwLzYxNy80MjA2MTcwZGU1ZTU2YTQ3YTQyNDdhMjA3MjM4OTFiMS5wbmc=	104.22.68.143	200 OK	231 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80LzIwLzYxNy80MjA2MTcwZGU1ZTU2YTQ3YTQyNDdhMjA3MjM4OTFiMS5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 231 kB (230705 bytes) Hash d3cbbfbe3ff574efc744e2011dd0aedd d8559acac504134061fb648854b1d7e562eede09 ad6dcbb3eaf0001fee9113b9f50e5aef52fe320204143693bdc985732a78dc4e HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy80LzIwLzYxNy80MjA2MTcwZGU1ZTU2YTQ3YTQyNDdhMjA3MjM4OTFiMS5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 230705 last-modified: Wed, 21 Jun 2023 06:40:18 GMT etag: "64929b52-38531" access-control-allow-origin: * expires: Fri, 31 Aug 2018 01:47:58 GMT cache-control: max-age=31536000 x-proxy-cache: MISS cf-cache-status: HIT age: 1299715 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974748c640d36-ARN X-Firefox-Spdy: h2`

	report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iLzFlLzgzNC9iMWU4MzRjY2ZiZmFjZjgwYWViM2ViZjhjMTRmZDUzNi5wbmc=	104.22.68.143	200 OK	300 kB
URL GET HTTP/2 report1.biz/t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iLzFlLzgzNC9iMWU4MzRjY2ZiZmFjZjgwYWViM2ViZjhjMTRmZDUzNi5wbmc= IP 104.22.68.143:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subjectreport1.biz FingerprintF7:4C:73:EC:E0:D8:84:70:DB:E5:F1:2F:36:2E:1C:B4:BF:4D:35:F4 ValidityWed, 22 Nov 2023 16:35:33 GMT - Tue, 20 Feb 2024 16:35:32 GMT File type PNG image data, 492 x 328, 8-bit/color RGBA, non-interlaced\012- data Size 300 kB (299484 bytes) Hash 4c7b138765af699743a616cd071f0457 4e6d517ea27090ffdee7e009fa3089cb70aa689a c90ade6b9826605775c703d1964c3bd9f10bf4c9d871173f6ffba4edf49b9d22 HTTP Headers GET /t/?img=aHR0cDovL2ltZy5uZXdzLmNsaWNrc3Rhci5tZS9uZXdzX2ltYWdlcy9iLzFlLzgzNC9iMWU4MzRjY2ZiZmFjZjgwYWViM2ViZjhjMTRmZDUzNi5wbmc= HTTP/1.1 Host: report1.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: image/png content-length: 299484 last-modified: Wed, 21 Jun 2023 06:38:12 GMT etag: "64929ad4-491dc" access-control-allow-origin: * expires: Sun, 23 Sep 2018 17:06:12 GMT cache-control: max-age=31536000 x-proxy-cache: HIT cf-cache-status: HIT age: 56517 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 832974749c680d36-ARN X-Firefox-Spdy: h2`

	dm9.biz/?auf=meydayzsmm5domjvf42tanjpge2s6yrvhftdomjwgyxtenrpge3tamrqha2tambq&p=l&sub1=&sub2=&sub3=&sub4=&cpc=0&cpm=0	164.90.194.65	302 Found	58 kB
URL User Request GET HTTP/2 dm9.biz/?auf=meydayzsmm5domjvf42tanjpge2s6yrvhftdomjwgyxtenrpge3tamrqha2tambq&p=l&sub1=&sub2=&sub3=&sub4=&cpc=0&cpm=0 IP 164.90.194.65:443 ASN #14061 DIGITALOCEAN-ASN Certificate IssuerLet's Encrypt Subjectdm9.biz Fingerprint10:79:0C:F5:53:BA:6A:C7:38:AC:68:34:79:CE:2A:FE:ED:40:9C:C7 ValidityWed, 01 Nov 2023 19:11:57 GMT - Tue, 30 Jan 2024 19:11:56 GMT File type Size 58 kB (57896 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?auf=meydayzsmm5domjvf42tanjpge2s6yrvhftdomjwgyxtenrpge3tamrqha2tambq&p=l&sub1=&sub2=&sub3=&sub4=&cpc=0&cpm=0 HTTP/1.1 Host: dm9.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found server: nginx date: Sat, 09 Dec 2023 01:25:32 GMT content-type: text/html; charset=UTF-8 access-control-allow-origin: * set-cookie: uuid=509ba598-090f-438d-a690-8922af81a476; expires=Mon, 08-Jan-2024 01:25:32 GMT; Max-Age=2592000; path=/ ccid=%5B170878%5D; expires=Sun, 10-Dec-2023 01:25:32 GMT; Max-Age=86400; path=/; domain=dm9.biz location: https://tqnqt.rigelbetelgeuse.top/?pl=jPYNfiJs70uLjptRAgGw_A&sub_id=feed9715&click_id=b59f7166 strict-transport-security: max-age=31536000 content-security-policy: img-src https: data:; upgrade-insecure-requests X-Firefox-Spdy: h2

	w-news.biz/?more=1&s=o&t=light&f=feed9715&h=b59f7166&cpm=0&cpc=0	172.67.139.171	200 OK	43 kB
URL GET HTTP/3 w-news.biz/?more=1&s=o&t=light&f=feed9715&h=b59f7166&cpm=0&cpc=0 IP 172.67.139.171:443 ASN #13335 CLOUDFLARENET Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerGoogle Trust Services LLC Subjectw-news.biz Fingerprint49:E9:D9:98:63:2E:25:1B:58:21:14:B1:B6:25:15:EF:D5:3E:B8:BB ValidityWed, 22 Nov 2023 11:56:34 GMT - Tue, 20 Feb 2024 11:56:33 GMT File type Size 43 kB (43164 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?more=1&s=o&t=light&f=feed9715&h=b59f7166&cpm=0&cpc=0 HTTP/1.1 Host: w-news.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest DNT: 1 Connection: keep-alive Referer: https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Cookie: uuid=183bef33-650b-4f3b-a685-5a1743a5b21e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Sat, 09 Dec 2023 01:25:33 GMT content-type: text/html; charset=UTF-8 access-control-allow-origin: * accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8aRrya0l%2BGVT%2BxTSW7RFLulR%2FOjmsEJOO%2F6ju%2Fr%2BxAcyvsjADE0KHezxQFUA7dp9rdSqQDMuuM2pq3irJOFIdH06TpsRtI8dZOUS0ZjrK5byd8NTg8Wq5na7upW9"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 832974748d395695-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166	172.67.139.171	200 OK	58 kB
URL User Request GET HTTP/2 w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 IP 172.67.139.171:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectw-news.biz Fingerprint49:E9:D9:98:63:2E:25:1B:58:21:14:B1:B6:25:15:EF:D5:3E:B8:BB ValidityWed, 22 Nov 2023 11:56:34 GMT - Tue, 20 Feb 2024 11:56:33 GMT File type Size 58 kB (57896 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?start=1&s=o&t=light&f=feed9715&h=b59f7166 HTTP/1.1 Host: w-news.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 09 Dec 2023 01:25:32 GMT content-type: text/html; charset=UTF-8 access-control-allow-origin: * set-cookie: uuid=183bef33-650b-4f3b-a685-5a1743a5b21e; expires=Mon, 08-Jan-2024 01:25:32 GMT; Max-Age=2592000; path=/ accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rkUdkHrsxNjpqKiPZ6pqrL0EmshmC6az6mh%2BCA8Be2oP3Tg4hb9JYmHCZkRgBQ05StvZ%2F3jsDefkSllh9CKVAECP5N2xKONLZ8dfiPAosjN%2BnJB1yLVRuX79TDzS"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8329746d2c4cb4f4-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	dr6.biz/?te=mvtdgmtcgm5ha3ddf43tonzu	185.177.92.30	200 OK	10 B
URL GET HTTP/2 dr6.biz/?te=mvtdgmtcgm5ha3ddf43tonzu IP 185.177.92.30:443 ASN #39572 DataWeb Global Group B.V. Requested by https://w-news.biz/?start=1&s=o&t=light&f=feed9715&h=b59f7166 Certificate IssuerLet's Encrypt Subject0.mo11.biz FingerprintE1:45:33:34:CE:A3:24:DD:69:23:31:B0:D6:FA:43:AE:88:96:FB:1E ValidityWed, 01 Nov 2023 18:59:41 GMT - Tue, 30 Jan 2024 18:59:40 GMT File type ASCII text, with no line terminators Size 10 B (10 bytes) Hash f495e69f2e9edc75eeae7dd3ea78a747 a89e38bbe70fa2de5db9d578975abd4e9dcda52e 8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c HTTP Headers `GET /?te=mvtdgmtcgm5ha3ddf43tonzu HTTP/1.1 Host: dr6.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://w-news.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:25:33 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * set-cookie: uuid=d65c3b92-7892-4fee-bf19-ee2c3ba754ec; expires=Mon, 08-Jan-2024 01:25:33 GMT; Max-Age=2592000; path=/; SameSite=None; domain=dr6.biz; secure strict-transport-security: max-age=31536000 content-security-policy: img-src https: data:; upgrade-insecure-requests X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (35)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers