{"report_id":"614efcd3-ad77-445f-8d3d-9d12274fda46","version":6,"status":"done","tags":[],"date":"2024-12-10T10:18:49Z","url":{"schema":"http","addr":"170.39.226.155/pic/uploadimg/2022/05/220831ry100.mp4.jpg","fqdn":"170.39.226.155","domain":"170.39.226.155","tld":""},"ip":{"addr":"170.39.226.155","port":0,"asn":57695,"as":"Misaka Network, Inc.","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"iyfbodn.com/?dn=keznews.com\u0026pbsubid=7b19a300-7254-4624-abcd-d87c5d8d8ed9\u0026pid=9POT3387I","fqdn":"iyfbodn.com","domain":"iyfbodn.com","tld":"com"},"title":"iyfbodn.com/?dn=keznews.com\u0026pbsubid=7b19a300-7254-4624-abcd-d87c5d8d8ed9\u0026pid=9POT3387I"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-02-18T10:18:49Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"170.39.226.155","ip":{"addr":"170.39.226.155","port":0,"asn":57695,"as":"Misaka Network, Inc.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":1,"received_data":224,"sent_data":426,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww88.keznews.com","ip":{"addr":"46.8.8.100","port":0,"asn":60592,"as":"Gransy s.r.o.","country":"Czechia","country_code":"CZ"},"domain_registered":"2006-08-24","domain_rank":0,"first_seen":"2024-02-06T18:25:20Z","last_seen":"2024-10-08T18:00:03Z","alert_count":0,"request_count":1,"received_data":224,"sent_data":387,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww82.keznews.com","ip":{"addr":"199.59.243.227","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2006-08-24","domain_rank":733178,"first_seen":"2021-03-02T12:37:41Z","last_seen":"2024-11-20T18:28:37.777626Z","alert_count":0,"request_count":4,"received_data":43297,"sent_data":1720,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.164","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2024-12-04T01:36:57.045855Z","alert_count":0,"request_count":1,"received_data":54244,"sent_data":428,"comment":"","tags":null,"fingerprints":null},{"fqdn":"syndicatedsearch.goog","ip":{"addr":"172.217.21.174","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-04-14","domain_rank":0,"first_seen":"2023-09-25T09:30:59Z","last_seen":"2024-12-04T02:16:34.468185Z","alert_count":0,"request_count":1,"received_data":1388,"sent_data":1223,"comment":"","tags":null,"fingerprints":null},{"fqdn":"iyfbodn.com","ip":{"addr":"208.91.196.46","port":0,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"domain_registered":"2020-09-22","domain_rank":147548,"first_seen":"2021-06-29T18:15:40Z","last_seen":"2024-12-08T06:59:57.708451Z","alert_count":0,"request_count":3,"received_data":4365,"sent_data":1160,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-10","alert":"Sinkholed","trigger":"170.39.226.155","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"170.39.226.155/pic/uploadimg/2022/05/220831ry100.mp4.jpg","fqdn":"170.39.226.155","domain":"170.39.226.155","tld":""},"ip":{"addr":"170.39.226.155","port":0,"asn":57695,"as":"Misaka Network, Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:24.975642369Z","timestamp":1733825904975,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /pic/uploadimg/2022/05/220831ry100.mp4.jpg HTTP/1.1\r\nHost: 170.39.226.155\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nContent-Type: text/html; charset=utf-8\r\nLocation: http://ww88.keznews.com/\r\nDate: Tue, 10 Dec 2024 10:18:24 GMT\r\nContent-Length: 59\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":59,"size_decoded":59,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"9ac0db58d60bdc511819a27b6a1c9e29","sha1":"c31a3b2c9092850cca48e755c86842ff59a7d5f8","sha256":"7a263ed98e24422afa4505281f3fbd6549cb2642e7a1852db1cc131a53221e47","sha512":"3255990d4dfccae552c9cadd71031b6a379256cc15226717b6ebd62a3b02173034fe82e7dc4aed9745022223a9aca6fd2bf99a41a0c951e36ba5e37c0d7abc98","ssdeep":"","tlshash":"3ca0029c9ba811d86b47db3c7571211495d920929181bb5656796d06b4446a2f4301c9","first_seen":"2024-05-30T00:33:56Z","last_seen":"2024-12-30T05:31:24.568564Z","times_seen":12,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-10","alert":"Sinkholed","trigger":"170.39.226.155","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ww88.keznews.com/","fqdn":"ww88.keznews.com","domain":"keznews.com","tld":"com"},"ip":{"addr":"46.8.8.100","port":0,"asn":60592,"as":"Gransy s.r.o.","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:30.880543612Z","timestamp":1733825910880,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ww88.keznews.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nContent-Type: text/html; charset=utf-8\r\nLocation: http://ww82.keznews.com/\r\nDate: Tue, 10 Dec 2024 10:18:30 GMT\r\nContent-Length: 59\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":59,"size_decoded":59,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"fc147d39794a704f411c366352938c4a","sha1":"cfc5b4d85218fc94ce9eeaab31d51b3170e93c03","sha256":"3a1e5d4edc353b4338e69099893b7969c01b38bb98a424404819edc7820b4987","sha512":"14a4402d4159aa7008b73f4f64b7aab9dd8110c33422de9255795a80dd456a59f89c55673f5a120e3c6be1b0e6efc69c47c6fc6117ee263d2a25c51b596d7580","ssdeep":"","tlshash":"cea0228c8ba800c82a03cb383830200080c820828280ba0202382c02b0002a2b0300c8","first_seen":"2023-05-09T11:20:13Z","last_seen":"2025-02-05T06:59:33.105794Z","times_seen":20,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww82.keznews.com/","fqdn":"ww82.keznews.com","domain":"keznews.com","tld":"com"},"ip":{"addr":"199.59.243.227","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:31.19308375Z","timestamp":1733825911193,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ww82.keznews.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Tue, 10 Dec 2024 10:18:31 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 1050\r\nx-request-id: 7b19a300-7254-4624-abcd-d87c5d8d8ed9\r\ncache-control: no-store, max-age=0\r\naccept-ch: sec-ch-prefers-color-scheme\r\ncritical-ch: sec-ch-prefers-color-scheme\r\nvary: sec-ch-prefers-color-scheme\r\nx-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_rkfQqHNSCCrmeergc5sBI/niiP7cGVNGJH6FG8531WBlso/MHUi5BcupMIVrk0EuvLehULhilz4EpO9ED8q0oA==\r\nset-cookie: parking_session=7b19a300-7254-4624-abcd-d87c5d8d8ed9; expires=Tue, 10 Dec 2024 10:33:31 GMT; path=/\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1050,"size_decoded":1050,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (318)","md5":"2cd4260a64896c667ffcfd31a1669b55","sha1":"7f8af8e5738f9017c3d178bf990a49b22e586c48","sha256":"c97c7016eaf32bbc7c52dd96bdc13bc0058ba45142626b40d88b47c7f87d3965","sha512":"78dd87556eb84faa249ed93fb3d8959191b80cbd904f0ae19b8a1d3f619742f8d8ad1683370106ccfc1214f093d4f3d7d7ee65f07fe08568099f1a1617c81d91","ssdeep":"","tlshash":"7a11757a15796c4d607295d12a61a60c8c0e2b8992506c84bfe8e0ba9c843d3ec2b2dd","first_seen":"2024-12-10T10:18:53.104775Z","last_seen":"2024-12-10T10:18:53.104775Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww82.keznews.com/bfQdihiSp.js","fqdn":"ww82.keznews.com","domain":"keznews.com","tld":"com"},"ip":{"addr":"199.59.243.227","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:31.334980552Z","timestamp":1733825911334,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /bfQdihiSp.js HTTP/1.1\r\nHost: ww82.keznews.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww82.keznews.com/\r\nCookie: parking_session=7b19a300-7254-4624-abcd-d87c5d8d8ed9\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Tue, 10 Dec 2024 10:18:31 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 35081\r\nx-request-id: c04e1b4f-64e4-44f4-8081-e2e4e9b98c87\r\nset-cookie: parking_session=7b19a300-7254-4624-abcd-d87c5d8d8ed9; expires=Tue, 10 Dec 2024 10:33:31 GMT\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35081,"size_decoded":35081,"mime_type":"text/plain; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (35078)","md5":"4150be91c2a3cfe950ecd06dfda28bd6","sha1":"aec65ee382f38ad6e2d4d6f35bbef215b97421b8","sha256":"a5b590c1b46928f9679900f4943c4caa3cab59fe7ba28645f21c20331ebeb4e6","sha512":"25d1c2dcac5cd67278960fa6fb8a82cea482b3426db2c4fd1e5e91e840954a1e3b076f8b2de7aba959a9360167306051b68e81e061a2d5335724098db6b7ab16","ssdeep":"768:TP2y1f3VcwDn85NdxBB5gPBPJ8rnaVG4xYEb0Ddem+euROvvMzLXWI+6Ch/ZXhJ0:JIrnSG4xYEzRL/","tlshash":"7af22ba23ab7e06046e2c5dae8775215f638210a3405d06cf96c88ce365ee47d73eb75","first_seen":"2024-12-06T19:34:58.814761Z","last_seen":"2025-01-23T17:08:50.481484Z","times_seen":3027,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww82.keznews.com/_fd","fqdn":"ww82.keznews.com","domain":"keznews.com","tld":"com"},"ip":{"addr":"199.59.243.227","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:31.400271155Z","timestamp":1733825911400,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /_fd HTTP/1.1\r\nHost: ww82.keznews.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://ww82.keznews.com/\r\nContent-Type: application/json\r\nOrigin: http://ww82.keznews.com\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: parking_session=7b19a300-7254-4624-abcd-d87c5d8d8ed9\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Tue, 10 Dec 2024 10:18:30 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 5301\r\nx-request-id: bc1519ea-ca28-4e76-ad0b-1833196af09f\r\nset-cookie: parking_session=7b19a300-7254-4624-abcd-d87c5d8d8ed9; expires=Tue, 10 Dec 2024 10:33:31 GMT\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5301,"size_decoded":5301,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (5301), with no line terminators","md5":"67d45d058ade731acc1760fe63dfdf7c","sha1":"7d3c2841a71b1b4517df5008d57869b4de497d73","sha256":"e35f71420d9b5bae593d82ea864edd758b00ec95200b32f0c091bed456b3c439","sha512":"a3e55ca79566af340c12cc266adff5fe1dcba3cfb17f84f65b65c9cfcac7dadddbeb1587d603fc7cb187ad524c7a71187b81d865f2ca249f2cef411e346d5837","ssdeep":"96:N9zXKGNSJqP4VeTSqtQ/oPULGQwC7O3OpEXSpXsV1oo2:DaGYmW/cS/7O+pEXSuV1oo2","tlshash":"b7b1a5f58a59399edb13010331df43d9130e93af37ba121e055fea49860994fb9e072a","first_seen":"2024-12-10T10:18:53.108431Z","last_seen":"2024-12-10T10:18:53.108431Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026bodis=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.164","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:31.820032308Z","timestamp":1733825911820,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /adsense/domains/caf.js?abp=1\u0026bodis=true HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww82.keznews.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Tue, 10 Dec 2024 10:18:31 GMT\r\nexpires: Tue, 10 Dec 2024 10:18:31 GMT\r\ncache-control: private, max-age=3600\r\netag: \"12949028731500680610\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":53529,"size_decoded":53529,"mime_type":"application/x-gzip","magic":"gzip compressed data, max compression","md5":"2b346efb72544ea9c4d328b74990ebfb","sha1":"471fcee7ffc6d727602fcae6e3061f9535738f1b","sha256":"12d7e227505947b206f50d3b229497f325dce3a99e54878a6164afe97d24ae9a","sha512":"d39b94ae2ed6e235d39bd23ad73610636357d26f457a174e546d1be4fe07d11a02e47fca1e0802ad80de2974a916607947bfaed904ee32e8e31a758f8bda31b1","ssdeep":"768:h+x90L1ko2z/09JiaEaOm3oko3Zyb6dwsF+Bfu8IzMrOW+YQXEjqi6ZWtYoEuPyS:hm0LmxmUawm3okuT8c8Izy+Yr6sBEG9p","tlshash":"4b33f296280689e79eb448456257ba7fc8a5a19b4dd832e5f732c0e04d7efb30ce13d4","first_seen":"2024-12-10T00:33:57.446019Z","last_seen":"2024-12-10T10:18:53.110432Z","times_seen":12,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"syndicatedsearch.goog/afs/ads?adtest=off\u0026psid=3113057640\u0026pcsa=false\u0026channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol110%2Cpid-bodis-gcontrol441%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol160\u0026client=dp-bodis31_3ph\u0026r=m\u0026hl=en\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww82.keznews.com%2F%3Fcaf%3D1%26bpt%3D345\u0026max_radlink_len=50\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2502185569747978\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107%2C49280906%2C72771953\u0026format=r3\u0026nocache=2801733825911788\u0026num=0\u0026output=afd_ads\u0026domain_name=ww82.keznews.com\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1733825911789\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=922\u0026frm=0\u0026uio=-\u0026cont=rs\u0026drt=0\u0026jsid=caf\u0026jsv=702325170\u0026rurl=http%3A%2F%2Fww82.keznews.com%2F","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"172.217.21.174","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:32.046196362Z","timestamp":1733825912046,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /afs/ads?adtest=off\u0026psid=3113057640\u0026pcsa=false\u0026channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol110%2Cpid-bodis-gcontrol441%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol160\u0026client=dp-bodis31_3ph\u0026r=m\u0026hl=en\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww82.keznews.com%2F%3Fcaf%3D1%26bpt%3D345\u0026max_radlink_len=50\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2502185569747978\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107%2C49280906%2C72771953\u0026format=r3\u0026nocache=2801733825911788\u0026num=0\u0026output=afd_ads\u0026domain_name=ww82.keznews.com\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1733825911789\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=922\u0026frm=0\u0026uio=-\u0026cont=rs\u0026drt=0\u0026jsid=caf\u0026jsv=702325170\u0026rurl=http%3A%2F%2Fww82.keznews.com%2F HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww82.keznews.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-disposition: inline\r\ndate: Tue, 10 Dec 2024 10:18:31 GMT\r\nexpires: Tue, 10 Dec 2024 10:18:31 GMT\r\ncache-control: private, max-age=3600\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-z5z2Xv9MQ9F8X_DkOGMUQw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ncontent-encoding: br\r\nserver: gws\r\ncontent-length: 613\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":613,"size_decoded":1119,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (625)","md5":"153aa9bdfc3ade6a0731cbaf96546cf6","sha1":"f6c26673ac1f3eca28360a500d43ec994c6ce587","sha256":"1d848e7a079ac061956c58cac48ed203d97933b599cc84d0099d6ab2e4dee7f8","sha512":"b35d9e70b3dcff96aca94019e0fdf264fa98b8cabb68e2a18d0d48722224ad35479f6dc7b77b3b0497f597e8e1813ea3f6618a90c2d7b980c8ead63f46eab6dc","ssdeep":"","tlshash":"5f2123a61c584831cea315250edf77d0144cb870b2876688d09da4a922fefddd92b27b","first_seen":"2024-12-10T10:18:53.111933Z","last_seen":"2024-12-10T10:18:53.111933Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww82.keznews.com/_zc","fqdn":"ww82.keznews.com","domain":"keznews.com","tld":"com"},"ip":{"addr":"199.59.243.227","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:32.4823965Z","timestamp":1733825912482,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /_zc HTTP/1.1\r\nHost: ww82.keznews.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://ww82.keznews.com/\r\nContent-Type: application/json\r\nContent-Length: 5769\r\nOrigin: http://ww82.keznews.com\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: parking_session=7b19a300-7254-4624-abcd-d87c5d8d8ed9\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty\r\ndate: Tue, 10 Dec 2024 10:18:32 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: gzip\r\ncontent-length: 179\r\nx-version: 2.134.6\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\ncache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nset-cookie: parking_session=7b19a300-7254-4624-abcd-d87c5d8d8ed9; expires=Tue, 10 Dec 2024 10:33:32 GMT; Max-Age=900; path=/; httponly\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":179,"size_decoded":181,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"94132f3c3d32ab15f227154e8c9134e8","sha1":"e826b6056b3cbaa4301b3275c48240c00f79442d","sha256":"a830b46f51aad1cf977b1e20e8f04176e845b8f0f93d5d44b019d9213089b3a2","sha512":"eaa9e7b3a7a5da6298c16eeaa8e4471cfbf635d38c262a0475a515195e04dc2f7e924643bd24af0b398199824043f7dbf42b3a4a2a5d0f4707fe6500435d269b","ssdeep":"","tlshash":"b7c0c0f641270709a3103504ae14360c8fc44ce1094de102832c89eef02059decc7160","first_seen":"2024-12-10T10:18:53.113702Z","last_seen":"2024-12-10T10:18:53.113702Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iyfbodn.com/","fqdn":"iyfbodn.com","domain":"iyfbodn.com","tld":"com"},"ip":{"addr":"208.91.196.46","port":0,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-10T10:18:35.935465427Z","timestamp":1733825915935,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: iyfbodn.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 10 Dec 2024 10:18:35 GMT\r\nServer: Apache\r\nReferrer-Policy: no-referrer-when-downgrade\r\nAccept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nPermissions-Policy: ch-ua-platform-version=(\"https://dts.gnpge.com\"), ch-ua-model=(\"https://dts.gnpge.com\")\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_YguGc7dpxCl47hqRU14COnq8skMVqljpnS413P/h+gql9tRGYKZfjawh8+sUICIgpXucOKkcQ8mtAWx9FxXb1A==\r\nContent-Length: 1874\r\nKeep-Alive: timeout=5, max=61\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1874,"size_decoded":1874,"mime_type":"text/plain; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (427), with CRLF line terminators","md5":"9a8dd193bc19f364672b39de3fea970f","sha1":"c65942988e415198049ede7c397a8954e220a7a6","sha256":"64f0ee250586371e5c876127aee9200a6810ffb8e670b091111d7385308f7616","sha512":"be042b43021be0718274fb15aa373157aa9b8474813179222c6da80e285f97daf4e4b3966bcef760942f8dabe7d87bcc76eb9e46e28d8920b52a9088ec817a70","ssdeep":"","tlshash":"c831958f81c9c98c5774443fedf5b134a08a57438261c8fe49a8e9cbd849b42e881a5e","first_seen":"2024-12-10T10:18:53.116032Z","last_seen":"2024-12-10T10:18:53.116032Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iyfbodn.com/?dn=keznews.com\u0026pbsubid=7b19a300-7254-4624-abcd-d87c5d8d8ed9\u0026pid=9POT3387I","fqdn":"iyfbodn.com","domain":"iyfbodn.com","tld":"com"},"ip":{"addr":"208.91.196.46","port":0,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-12-10T10:18:32.526Z","timestamp":1733825912526,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_256_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"iyfbodn.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 15 Oct 2024 12:30:31 GMT","end":"Mon, 13 Jan 2025 12:30:30 GMT"},"fingerprint":{"sha1":"4A:0D:F3:D7:3C:08:65:9C:3B:3A:CE:D3:E9:15:C2:A3:77:57:70:91","sha256":"2B:95:E8:A7:E2:66:96:52:50:EB:9F:E9:43:1D:DA:8F:B1:98:EC:58:12:21:E9:A7:F6:70:C7:77:4B:9A:7F:22"}}},"request":{"raw":"GET /?dn=keznews.com\u0026pbsubid=7b19a300-7254-4624-abcd-d87c5d8d8ed9\u0026pid=9POT3387I HTTP/1.1\r\nHost: iyfbodn.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://ww82.keznews.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nDate: Tue, 10 Dec 2024 10:18:36 GMT\r\nServer: Apache\r\nReferrer-Policy: no-referrer-when-downgrade\r\nAccept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nPermissions-Policy: ch-ua-platform-version=(\"https://dts.gnpge.com\"), ch-ua-model=(\"https://dts.gnpge.com\")\r\nContent-Length: 299\r\nKeep-Alive: timeout=5, max=65\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":299,"size_decoded":299,"mime_type":"","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"e34794eb620a142251ce1c0f45211d15","sha1":"287845e17a02ad1b7b582b0afc0fd448b9f39529","sha256":"750087442c04b3724c5a78366435c991728751ab45dc56d4dc858670e6fe8ec9","sha512":"37dbf99f4104a8207078450a09a9ae518240717bddc4f18a70c91efc2741f626b3f0c3e5fa382240df5524b5c44f94f1b45c2dc2ed4fb2551d736d34bd3db7dc","ssdeep":"","tlshash":"0de02b3f60001d0e55b2b03879c33f0687afab52819d2584a5e5425bdbcbbeac9c735a","first_seen":"2024-09-11T18:40:07Z","last_seen":"2025-07-08T02:30:02.80965Z","times_seen":471,"resource_available":false,"data":null}},"time_used":1082,"timings":{"blocked":540,"dns":142,"connect":131,"send":0,"wait":0,"receive":0,"ssl":265},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"iyfbodn.com/favicon.ico","fqdn":"iyfbodn.com","domain":"iyfbodn.com","tld":"com"},"ip":{"addr":"208.91.196.46","port":80,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://iyfbodn.com/?dn=keznews.com\u0026pbsubid=7b19a300-7254-4624-abcd-d87c5d8d8ed9\u0026pid=9POT3387I","date":"2024-12-10T10:18:36.592Z","timestamp":1733825916592,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: iyfbodn.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://iyfbodn.com/?dn=keznews.com\u0026pbsubid=7b19a300-7254-4624-abcd-d87c5d8d8ed9\u0026pid=9POT3387I\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Tue, 10 Dec 2024 10:18:36 GMT\r\nServer: Apache\r\nReferrer-Policy: no-referrer-when-downgrade\r\nAccept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nPermissions-Policy: ch-ua-platform-version=(\"https://dts.gnpge.com\"), ch-ua-model=(\"https://dts.gnpge.com\")\r\nContent-Length: 10\r\nKeep-Alive: timeout=5, max=59\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":10,"size_decoded":10,"mime_type":"text/html; charset=iso-8859-1","magic":"ASCII text, with no line terminators","md5":"6608dd3e21ca3beabd4bdfa625a0b221","sha1":"e926d0f8694a4bc4013308afaca7af51e4c9fd9f","sha256":"c75eb01138771bfb2a5517aeae882356733782767c4560cc9601c34d2591ca75","sha512":"fb9a38c874cd26e779eaa5acfffccd3835620a41adbfe9b086c6a213bf0596f4f98823487f9c79b8f02f649b8b2e4d3232ffcb78106147b3ff671ed7809bbd51","ssdeep":"","tlshash":"f6500003000000003300000c000c0000c000c0000fcc0000300c000300300030000000","first_seen":"2023-04-05T09:28:17Z","last_seen":"2026-04-07T16:02:53.011564Z","times_seen":12378,"resource_available":false,"data":null}},"time_used":137,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":137,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}