200 OK 34 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 6e69fffea5bdd4fbe1f881a32d0bfeae
291e72fc5d5f36d534f47c6de5cdcba1b2ad9e7b
625dd922890d25d6be1263396717abb5e7573d7acacbd400043cb4fc17fb0d39
Analyzer Verdict Alert OpenPhish phishing Office365
Quad9 DNS malicious Sinkholed
GET /alert/win/ HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.4.16
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FNSst%2BROD7%2BMe0nauXl2C7MGnm4hrHTxeZOryQR4RezYYDioqvyJQauuK50m10LcCHvz5gJw86xy5bevvYnsbDJIi2VHxxOKGZ%2BSlt%2BQYqxxLHQSVjLc%2BS02qa%2BZrIdf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ebbbdc9cc8b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha1/dist/css/bootstrap.min.css
200 OK 34 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha1/dist/css/bootstrap.min.css
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type Unicode text, UTF-8 text, with very long lines (65335)
Hash 5b42276b3039eaf18cc199cb4c8db7b8
719956aa52db4c8afdc5c0cfb3cbdead6258b8a6
932ea15108928991bcf0c0a46415fc652de5ffc0158c35205357b90c65eeb386
GET /npm/bootstrap@5.3.0-alpha1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://euronews.wiki
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.3.0-alpha1
x-jsd-version-type: version
etag: W/"35e6c-cZlWqlLbTIr9xcDPs8verWJYuKY"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 13:39:01 GMT
age: 11435964
x-served-by: cache-fra-eddf8230112-FRA, cache-bma1644-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2
euronews.wiki/alert/win/def.png
200 OK 3.8 kB URL GET HTTP/3 euronews.wiki/alert/win/def.png
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 77a2ffc5545f87551d74781201de9b3b
c9c3798afd2ae95aa3bba3c428335d49c8255b06
316e6a6737bd296ab30aca2ef7fa36f119d15786a2432d01e31fdc130272f15c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/def.png HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/png
content-length: 3834
last-modified: Wed, 20 Sep 2023 09:19:27 GMT
etag: "efa-605c6df47ad54"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I4BAl77LZLr5ac8oCCQc5BQfVm6JdLEoVW3T66yXy2n7DlaMgRI4pTYDgBgzaZUo0DsmLYO7T0e5aE%2BAFdJXb3i0k41h8ltkh4vZBot4oBcmXoEN2ZIkUMCT3FWS7TjV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdffffcb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbe46967_v.png
200 OK 293 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bbe46967_v.png
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbe46967_v.png HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/png
content-length: 293
last-modified: Wed, 20 Sep 2023 09:19:24 GMT
etag: "125-605c6df0c8127"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wRgM3eRH0fmc15LrP4DMGnxj%2FLvXkLb6ZmIN124F%2BXWGjl0V3BJRxkYF0El8SAuDy3Bu2Pj8Ayc6DicHtp0i538aMRy6EI7puienOgtCPqCNRBi4tcl35tqXRmay2j%2Bh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdff800b51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bba58587_v.png
200 OK 128 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bba58587_v.png
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bba58587_v.png HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/png
content-length: 128
last-modified: Wed, 20 Sep 2023 09:19:22 GMT
etag: "80-605c6def8ca5d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H8hDxD7hV4%2Bo1V13zzp28faEdkQ%2F4kO9BmHgx51vos2NpFu2vHRQ3QHqTGrU%2F1wRap1c4lKvfZW5kgZ00RQrE8%2B9GD9PxrZzrNSEpAn9XNacYypKByLdVtbU5IV4i1%2FC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdfffffb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbdae210_v.png
200 OK 364 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bbdae210_v.png
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbdae210_v.png HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/png
content-length: 364
last-modified: Wed, 20 Sep 2023 09:19:24 GMT
etag: "16c-605c6df0c0810"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vToKbwAZC94V%2B808OCMLN1dTwyItx%2BEqi0SCVRFXme3e9fafwXhPg4RXMMkhrta9A%2FS95e7W9A5kNuQhUlteG%2BEpYm5lgnT7cYBVeI5KVssJPgJpNlBDCW6yHNZ10hGE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0080ab51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbae3ed9_v.png
200 OK 349 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bbae3ed9_v.png
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Hash 7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbae3ed9_v.png HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/png
content-length: 349
last-modified: Wed, 20 Sep 2023 09:19:23 GMT
etag: "15d-605c6deff2356"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rjf%2FGy2Dy9oG0uXifjBWW%2BB7LOeyCPQVl1ArGQPpl%2FkekyuzqXE7bKV4vupFGfR3JlspXA0GKbIJBSWUmE%2Bo012ILQAUejCsyb6q6tx%2FJIG3%2FG9aUwFTIvuVcbJ6q40j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0080cb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bb9bf55a_v.gif
200 OK 1.8 kB URL GET HTTP/3 euronews.wiki/alert/win/5f205bb9bf55a_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 120 x 97\012- data
Hash 8806694db55d271b6c836433d103afcd
a532ae846499ffa93bd6ed8baafcbdabb2cc8da1
989f955c24583be00defab08c4cf80b17fe4c12756686359367144f0506eb8b8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bb9bf55a_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 1776
last-modified: Wed, 20 Sep 2023 09:19:22 GMT
etag: "6f0-605c6def8ab1e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9vdTmSirlCWRitBAU%2FmnDJqU3moEo%2FFtUm8PIq0pgTqq2SsvwkB93wSFcGSFtLKBK2zeu9o4mHho9mo4hhELL9blEvTijdJSWBhR%2BkSVem7Ew81bxRPkZfv12r1m9Kus"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0080db51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbb6fc7d_v.gif
200 OK 102 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bbb6fc7d_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 24 x 9\012- data
Hash ef14d57c065fdbd3c66d017a729ca91f
2e7b72d674361a9c2b41767ccfbed2486e6695dd
6fcbfcda8a36536a0f9b0bc8c4a6ca451d9bafd4a879d56697e48e209691ba36
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbb6fc7d_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 102
last-modified: Wed, 20 Sep 2023 09:19:23 GMT
etag: "66-605c6deff5a06"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IZMoemngv%2FQk2w0AJ%2BpcyuWoJuLlCkb429PkTXUnjCHCK8nmgVePO%2FblLh%2FdF8B3P6loFlXtr65v4UZdRf64oqsdAXaYBSyKfwZ5OsZL0gUp3L7yzgX%2FEshL%2Bk3mdzh6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0080eb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbbf25aa_v.gif
200 OK 1.5 kB URL GET HTTP/3 euronews.wiki/alert/win/5f205bbbf25aa_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 80 x 65\012- data
Hash 0d3c4efabb6072ec3312574009be3ef8
02d319a4e46538bcadcc5122883e1a0c3e94c123
45a676a0eb476e7706e0187d975b612f51f3bb4c26596f991d55f5e68fbef3e3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbbf25aa_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 1506
last-modified: Wed, 20 Sep 2023 09:19:23 GMT
etag: "5e2-605c6df058fd7"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KqhoqXsD3h13J2AP%2BeSg%2F7dVJA0YvORJQNoGAyaifQbAQundAPRLSmX2IElcZLch2qXl5hAjdIlNgaCvXPkK8bvIX4BU%2FfdgXY1vCxmpfyZgPq1ozi%2BLq%2BQhIx9OyTik"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0080fb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bc1a74d5_v.gif
200 OK 69 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bc1a74d5_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 16 x 16\012- data
Hash 3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bc1a74d5_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 69
last-modified: Wed, 20 Sep 2023 09:19:24 GMT
etag: "45-605c6df198908"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xj34BSbct1s5CsXS4kxQSGbxIrCKj6azOU7KWAUd68zv0Trg2DkOfsOgDliB6i8yLDpz9VcIyAd8%2BdAMvdUJ1Pfmdh1YUXPjY%2F4iknlV2YVuUisKdaq7Y0%2FmLdgQZCaN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0181cb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bc00090f_v.gif
200 OK 949 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bc00090f_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 78 x 68\012- data
Hash da9d153375da51a616a7663f1504e3a5
bd81fe60fe017bfe79be8c1afed88b659ff166d9
9bb88049c3d3f3c172d97246fa148bb725e727847c37e28c3be156be240a0c04
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bc00090f_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 949
last-modified: Wed, 20 Sep 2023 09:19:24 GMT
etag: "3b5-605c6df18f0b1"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bm66t1lTm9EOBZTjRR4687jSF9oFVsw%2Fvz9oljj0eWECcxXUJRuDWSq7rnFfUMKuA2mzkfnkEtBSCinzTw6RUCsK16lOE4HnITRY6RFFdqkncmdu9%2BDb9b4m3f2IdEsC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe01818b51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bc2379ac_v.gif
200 OK 377 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bc2379ac_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 16 x 16\012- data
Hash c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bc2379ac_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 377
last-modified: Wed, 20 Sep 2023 09:19:25 GMT
etag: "179-605c6df1f5d32"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NPeLoSKU60sVSU8bHAFrbUkiLrbf6CcrLmijB9XcQyZX3yzDO4v6Mex0ZTXwW9J7v3WB%2BN7G39PRJ8azmX73l4Hhyukmci6rQBm07MgjBtoTj%2Fx4Z3twSfCe%2FGCBEFb3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0181eb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bc2c1b4b_v.gif
200 OK 234 B URL GET HTTP/3 euronews.wiki/alert/win/5f205bc2c1b4b_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 16 x 16\012- data
Hash 9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bc2c1b4b_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 234
last-modified: Wed, 20 Sep 2023 09:19:25 GMT
etag: "ea-605c6df200141"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JbCHHVgU4P05tii3XtqPXRm9gGxR55ugV4UhL8uOJLmwsNTcNZZQr%2FG4D%2FR17cwJEixwBdME2Die2anJmguBeoBsLR%2F41sj6Ss8Igjs9U6Do1d9%2FklnlSOeCYwIJro5A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe01820b51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbc8a6e3_v.gif
200 OK 1.5 kB URL GET HTTP/3 euronews.wiki/alert/win/5f205bbc8a6e3_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 65 x 80\012- data
Hash af52e51f42fd0c55bc3cf2c8ece71492
016f83da68ff461a5c6aebcc2a45668317b2f24c
e91f304cf7409723968740e6363dda01b50acb8e94b5ca05b4a4617666ff095c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbc8a6e3_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 1547
last-modified: Wed, 20 Sep 2023 09:19:23 GMT
etag: "60b-605c6df05d627"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kr4acKZkOKefM%2B9H7o9GNXKubN9XyAETUgRkULaeuD9SN1%2BZL1Z9fFiEEYd5On2sNpBr3iWcc9UXu%2BNp15JGtS7zSej%2B539Cl5zCE%2FdxGoafmA%2FdAw6vAu2sQU0Hflsl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe01813b51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbf6a050_v.gif
200 OK 1.2 kB URL GET HTTP/3 euronews.wiki/alert/win/5f205bbf6a050_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 29 x 29\012- data
Hash 6d0c71ad95c413318e0946960a597318
297fa9d7797afcb90cb49adb045b673672b360ec
f2b1758e4d68018096355641f5e7163b0df07efc85e9c3513e51949a75c0446d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbf6a050_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 1245
last-modified: Wed, 20 Sep 2023 09:19:24 GMT
etag: "4dd-605c6df130130"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=da6QUdeKoFtTzm2VcOffwz1Re27UmsUDzSSqcPvq%2Bk57nW9tzyMU%2FopHQOAxQNE0BxeYgXjfdB4qySax0Ic2PWJlYpXsz32sKJMjOE5zXvKiTSKwmjQ01UhhJJ%2Bt3wp6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe0181bb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/5f205bbece31e_v.gif
200 OK 1.5 kB URL GET HTTP/3 euronews.wiki/alert/win/5f205bbece31e_v.gif
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type GIF image data, version 89a, 30 x 29\012- data
Hash 1834c112f6e54f620d2ef8f8c037d450
b911b12717fc708c9418b4a2a0d72f79c5c53be3
81a5f62c155d307316d16a11e5a907a99fcfa3f70dce41d01d9f65518206734e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/5f205bbece31e_v.gif HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/gif
content-length: 1509
last-modified: Wed, 20 Sep 2023 09:19:24 GMT
etag: "5e5-605c6df127c60"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZHcbcCml4erimzkOxo6JT%2F2BTx7O4Jb6IBTihoWeOM3zxzHBeX0XPkdINugmcovYNFL5njDuGTEP9MdRkYE7l3kYRp0ghoywE9RcpyjNqiiFBSI0pCuD37UEpyu%2FHCK6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe01819b51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/minimize.jpeg
200 OK 17 kB URL GET HTTP/3 euronews.wiki/alert/win/minimize.jpeg
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=39, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=180], baseline, precision 8, 180x39, components 3\012- data
Hash 4bf52eb9b3efce840add1a90d83a40e5
6348a7617dfce3165e07af53a48df7892d62ffe1
a85f1e749a829c5c909837844c6b53ce0a9ae2adb7c8eac0e7b96c372c679a0d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/minimize.jpeg HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/jpeg
content-length: 17173
last-modified: Wed, 20 Sep 2023 09:19:28 GMT
etag: "4315-605c6df5103e9"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fDp5vUTsMzPjyxLfJmNtdvOgomnQD0xf0OU9r7WhoYAeReEv2%2BQ2XvtsKlrkajPlsAq%2Fu0985KiXdvfcHLFJJpSpMmEMkTjdKF90g%2FiS1mMtW8sXreDGPc8rKVRwt0zt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdffffeb51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/bg.png
200 OK 387 kB URL GET HTTP/3 euronews.wiki/alert/win/bg.png
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type PNG image data, 1920 x 1126, 8-bit/color RGBA, non-interlaced\012- data
Size 387 kB (386648 bytes)
Hash db2c775d2583118bf4464dd65a58535b
45413378bf16997decf585915931305788e55328
de9fbe2de348e17bd4948011260ef297c4102b69068692daaba02bf632acd291
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/bg.png HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: image/png
content-length: 386648
last-modified: Wed, 20 Sep 2023 09:19:27 GMT
etag: "5e658-605c6df3ac0cb"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B%2FSHLFGahNcOSu03ogYLkHWuLsqjSBdFiBrkdKM%2FZWPOEb6ky7vpTat5V8s1EGh22O%2BtF6yqc09Usc%2B2djos90YNWUpCkS7GTHE78yK2ot%2Fv%2BMuUIBx56IOWyQH2kqtv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdffffbb51b-OSL
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css2?family=Poppins:wght@100;200;300;400;500;600;700;800;900&family=Varela+Round&display=swap
200 OK 1.3 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@100;200;300;400;500;600;700;800;900&family=Varela+Round&display=swap
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash c68ab1ea49237ef109f8e15123a40138
5980772ec83990de28b9fa7e1096e89c2380ce39
019343d121b3e169872aaa495743dd8383b2339c92e805a2f75321751c883b4a
GET /css2?family=Poppins:wght@100;200;300;400;500;600;700;800;900&family=Varela+Round&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 13:39:02 GMT
date: Fri, 01 Dec 2023 13:39:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://euronews.wiki
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 02:38:20 GMT
expires: Fri, 29 Nov 2024 02:38:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 126042
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
200 OK 8.0 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://euronews.wiki
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:53:49 GMT
expires: Fri, 29 Nov 2024 04:53:49 GMT
cache-control: public, max-age=31536000
age: 117913
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://euronews.wiki
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:00:51 GMT
expires: Fri, 29 Nov 2024 04:00:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 121091
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
euronews.wiki/alert/win/custom.js
200 OK 9.2 kB URL GET HTTP/3 euronews.wiki/alert/win/custom.js
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7e59c0a71d07733e07c459fcfdd71662
5312ad3a14245b8c5214b49a200b220b9cd8e3dd
6886b0562bc5bc0c5e40941d41ec1fc778f95154f92b385d854a33bc86a690e3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/custom.js HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: application/javascript
last-modified: Wed, 20 Sep 2023 09:19:27 GMT
etag: W/"1904-605c6df413903"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XTeLhHEdvwQkHnte5TD4au4gB%2F1cMajHDDU5Gpb8pVbLzWNFpd1ho6yqlKLH42IZuYixAW6Od2fIoVIpJ%2B140zORHwSsOSQlWLLubBFuNmgzfHG1M3iPH5BeEJObse3U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdfdfe6b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/aud0345.mp4
206 Partial Content 201 kB URL GET HTTP/3 euronews.wiki/alert/win/aud0345.mp4
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type Audio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2, 64 kbps, 22.05 kHz, Monaural\012- data
Size 201 kB (200832 bytes)
Hash 0116152611dd51432e852781f8cc7e82
2408d3d281b25649894f78a4e19f7f8a8ac735f9
fc59bbb18f923747b9cd3f3b23537ff09c5ad2fdfc1505a4800a3f269a234e65
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/aud0345.mp4 HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Fri, 01 Dec 2023 13:39:02 GMT
content-type: video/mp4
content-length: 200832
last-modified: Wed, 20 Sep 2023 09:19:26 GMT
etag: "31080-605c6df2f6a80"
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-200831/200832
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aHqyDyNTzoKD9MNPxBQTgZ4yfHLnhDtcpqh6Z25slzNCskh8JGAMfXEwvFfmYpBWvrS1YDxeMCDVWzBW9FDblYpMXoy8gPOQ%2F%2F0wFWUvEC0YbXADbroTeZyxuqCplC%2B3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe47c54b51b-OSL
alt-svc: h3=":443"; ma=86400
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
200 OK 10 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4fbd15cb6047af93373f4f895639c8bf"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:58:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 25754c75fb460a03a208e88579fbc0b3
cdn-cache: HIT
cf-cache-status: HIT
age: 541586
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82ebbbe01efe5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
200 OK 7.7 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://euronews.wiki
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:35:53 GMT
expires: Thu, 28 Nov 2024 21:35:53 GMT
cache-control: public, max-age=31536000
age: 144191
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
chart.googleapis.com/chart?chs=320x320&cht=qr&&chl=https%3A//euronews.wiki/links/alert-pay/&choe=UTF-8&chld=L
200 OK 1.6 kB URL GET HTTP/3 chart.googleapis.com/chart?chs=320x320&cht=qr&&chl=https%3A//euronews.wiki/links/alert-pay/&choe=UTF-8&chld=L
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 320 x 320, 8-bit/color RGB, non-interlaced\012- data
Hash cc1fa2246860b362c688d37ee794a8ac
6d6e6cc6ceb5a2df7f4a5a8b28e2d929f125368e
dc907188fc40c708c97018d03379b332e5a8bef7e51fe19fd115d6f30b73710c
GET /chart?chs=320x320&cht=qr&&chl=https%3A//euronews.wiki/links/alert-pay/&choe=UTF-8&chld=L HTTP/1.1
Host: chart.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:04 GMT
expires: Sat, 02 Dec 2023 13:39:04 GMT
cache-control: public, max-age=86400
last-modified: Wed, 02-May-2018 18:35:04 GMT
x-frame-options: ALLOWALL
access-control-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
server: GoogleChartAPI/1.0
content-length: 1591
x-xss-protection: 1; mode=block
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
200 OK 84 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32180)
Hash 7f9fb969ce353c5d77707836391eb28d
62c4042e9ebc691a5372d653b424512a561d1670
2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 26660
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14983"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 645204
expires: Wed, 20 Nov 2024 13:39:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tFDFhK%2BUEji93tW7ZsHDDJGLMQAF8Bzyoo8sBBZML5scTP30TDhK8KRdPuZFYc0UCd%2BY1wBVeVxJhPPDLtqqEyLAibLHnQyaIlSwnXNDNaFc1TC0KF8%2BaXY8bzsZnIcl4BUM3jyv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82ebbbe01c161bfa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
euronews.wiki/alert/win/webs.mp4
206 Partial Content 8.4 kB URL GET HTTP/3 euronews.wiki/alert/win/webs.mp4
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural\012- data
Hash 8618fbb0911e3b8fc96725dee8bfd81f
1bbcb78922946d0cf18fbf3a9e092e36453eb767
0589be7715d2320e559eae6bd26f3528e97450c70293da2e1e8ce45f77f99ab1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/webs.mp4 HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Fri, 01 Dec 2023 13:39:02 GMT
content-type: video/mp4
content-length: 8405
last-modified: Wed, 20 Sep 2023 09:19:30 GMT
etag: "20d5-605c6df74cfd1"
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-8404/8405
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l1%2F%2BbYxwOLdiQXcrUXpC%2FmTdPOt71mrqXqRDHuTYIoEQNCtpGGIaidTPi7nx2a3R%2Bq4jD9tW9M7SqhlMdC%2F3EnkmGjkCmJqOrQQXIYevDOPJpCkIiKX1jvGp2iznvHSm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbe47c55b51b-OSL
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/styles.css
200 OK 12 kB URL GET HTTP/3 euronews.wiki/alert/win/styles.css
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type assembler source, ASCII text, with very long lines (397), with CRLF line terminators
Hash 2c0daa68a8b3ae388a77d807e23e3b79
d6f4dae9a103e44beb03012d326b57860dce3df8
788661d26fdf8df835e0e0bf02a0b9a3c6106813aa9b6564128ae699a3e42a7d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/styles.css HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: text/css
last-modified: Sat, 07 Oct 2023 07:59:20 GMT
etag: W/"2ead-6071bbc06a1c2"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YXS4iiyJ3AoUcs%2BZtJce5s5vmZXDldos9BDHdK0NZ5BciKrYPjPyk%2BczkBEBo6%2F9xCE%2F53TpNpwuCWVddNSDDv9JU%2BY04WSWaW9NUjQa7%2B7FAn4Z9Qa%2FUBfNrGVZv5oK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdfdfdbb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
euronews.wiki/alert/win/custom.css
200 OK 20 kB URL GET HTTP/3 euronews.wiki/alert/win/custom.css
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjecteuronews.wiki
FingerprintB2:D6:4F:B5:8B:26:6D:EC:E2:4B:FE:BA:E5:02:33:BB:2E:1C:9E:C6
ValidityWed, 29 Nov 2023 14:50:05 GMT - Tue, 27 Feb 2024 14:50:04 GMT
File type ASCII text, with CRLF line terminators
Hash d5ef30e4c84c4af1034397aa18f5662a
d71e24704839bed7130d03fac589d49360c49391
212023b328d403f27f10797a71134d241de77707299b57319f264dea8e0a318d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /alert/win/custom.css HTTP/1.1
Host: euronews.wiki
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/alert/win/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: text/css
last-modified: Wed, 20 Sep 2023 09:19:27 GMT
etag: W/"4ec1-605c6df3d6490"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2F%2FixbWPkhKC2DWaBzLUklW%2F1dgdy1rv%2BoZwYWgy%2BQDIkYJbQmC%2FpiJd240%2F5gROGHzocrALvqlHrTD3uoWnMX7NtdMLFF%2Fyk8OS6iIrPHvRGuTSVU%2F%2FaHIq2FyTvkQ4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ebbbdfdfe5b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
stackpath.bootstrapcdn.com/bootstrap/4.5.2/js/bootstrap.min.js
200 OK 60 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.5.2/js/bootstrap.min.js
IP
Requested by https://euronews.wiki/alert/win/
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (59765)
Hash 02d223393e00c273efdcb1ade8f4f8b1
0cc93b8421d89c24a889642428b363cb831de78a
79c599dd760cec0c1621a1af49d9a2a49da5d45e1b37d4575bace0a5e0226582
GET /bootstrap/4.5.2/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://euronews.wiki
DNT: 1
Connection: keep-alive
Referer: https://euronews.wiki/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 13:39:01 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"02d223393e00c273efdcb1ade8f4f8b1"
last-modified: Mon, 25 Jan 2021 22:04:11 GMT
cdn-cachedat: 09/17/2023 22:21:35
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 5c9416f08b7b4243f32e12e25d5b8d0c
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82ebbbe00e5656cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
188.114.97.1
142.250.74.106
104.17.25.14