Report - ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=

Report Overview

Visited public
2023-12-05 07:37:00
Tags
URL
ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=intent://ryymie.com/video-15?h=waWQiOjEwMDA0NTYsInNpZCI6MTE4MDA3NCwid2lkIjo1MTkxNjgsInNyYyI6Mn0=eyJ&si1=&si2=
Finishing URL
www.gofuckbiz.com/showthread.php?t=58807
IP / ASN
31.220.27.98
#39572 DataWeb Global Group B.V.
Title
TrueMeds - Революционная Фарма Партнерка! Увеличь свой профит в x2 раза вместе с нами! - Форум успешных вебмастеров - GoFuckBiz.com

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
mdakky.com	unknown	2023-10-12	2023-10-13 10:25:55	2023-12-04 19:41:24	1.1 kB	368 B	185.162.85.20
ecrwqu.com	577459	2021-11-09	2021-11-09 21:59:02	2023-12-04 05:35:27	558 B	868 B	185.162.85.3
onekoh.com	unknown	2023-10-31	2019-08-29 22:56:59	2023-12-04 05:35:27	4.8 kB	49 kB	185.162.87.220
allmilfswat.com	unknown	2020-09-22	2020-12-12 13:59:49	2023-11-26 04:40:13	543 B	666 B	94.130.64.156
track.wbdpnz.com	unknown	2022-05-27	2022-06-01 12:56:18	2023-12-04 11:41:47	776 B	896 B	18.158.88.249
230.mbvnclickpop2.site	unknown	2023-08-10	2023-08-19 15:30:56	2023-11-16 04:16:22	967 B	495 B	136.243.78.223
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-12-05 08:15:49	442 B	28 kB	142.250.74.42
telegram.org	5408	2003-12-15	2013-12-18 14:14:30	2023-12-04 07:29:56	2.3 kB	202 kB	149.154.167.99
oauth.telegram.org	187175	2003-12-15	2018-02-07 14:36:20	2023-11-30 07:49:05	672 B	1.3 kB	149.154.167.99
min-api.cryptocompare.com	20083	2013-11-03	2017-01-31 13:53:23	2023-11-27 22:23:06	500 B	647 B	20.4.130.154
www.gofuckbiz.com	unknown	2007-03-29	2012-07-30 17:09:10	2023-11-22 15:04:08	39 kB	1.6 MB	104.21.12.188
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-04 08:46:32	423 B	31 kB	151.101.66.137
i.imgur.com	5110	2009-01-09	2012-05-21 10:09:36	2023-12-04 23:48:45	1.3 kB	2.7 MB	151.101.84.193

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-05 07:36:47	medium	Client IP	Internal IP	ET INFO DNS Query for Suspicious .icu Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	ecrwqu.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed
2023-12-04	medium	onekoh.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (47)

	URL	From	Size	First Seen	Last Seen
	www.gofuckbiz.com/clientscript/vbulletin_menu.js?v=387	ScriptElement	9.4 kB	2023-04-01	2024-08-20
Pretty URL www.gofuckbiz.com/clientscript/vbulletin_menu.js?v=387 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:16 Last Seen2024-08-20 18:19 Times Seen11 Hash f8f5e475c976a04a081874743e6eecd3 adeeb6e2570dd1bea916e7d0b4f57971f6740d47 af5fc692d620a8f930b562a8cff455a438fa8e6a2832d0c0baef2c1ed62195b5 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	431 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 83e7ec963154ce39f6b0816fbea49cfa 3b54a93177dcc6895117d805e20f770da2f62193 acca0d31bc8fffb50b7cf8b1ddd0e0c986d9654e35c9c4da3bf1d7c2e2dc5a88 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	302 B	2024-08-20	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:43 Last Seen2024-08-20 16:43 Times Seen1 Hash 0a43d94a4508c74d8402ecc15eed3ae4 43bc16531ccddfa5358375151766f00201629b1e c76e7ee913635b860cd52f09bc9f0955e70ed6973e5c982ca660e3988aa88a4e Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	58 B	2023-03-11	2024-12-11
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 19:02 Last Seen2024-12-11 23:42 Times Seen18 Hash 76f995809b9405d0b1d23ad48b7cd448 5abe41ef9d822173342de3f1c0022765830ccd37 59b170a266f7d21508097d52fec0f97cdaa8b936f07472e5fec8c7d1ec729af3 Loading...

	ssl.google-analytics.com/ga.js	ScriptElement	3.4 kB	0001-01-01	2025-05-09
Pretty URL ssl.google-analytics.com/ga.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 04:45 Times Seen24798 Hash b6f6d7efd99960ab916ee096e061f2e7 e21f1b5b99444ed4e4f62308cf616edd93ee852e bbb1ca9c206e0ed72478ea72f3ca038cf739fd540d5d1c2da19620c942e4c4f4 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js	ScriptElement	79 kB	2023-03-07	2025-05-09
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-09 00:49 Times Seen4839 Hash 73a9c334c5ca71d70d092b42064f6476 b75990598ee8d3895448ed9d08726af63109f842 517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	686 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 88467a363da44ffd4a45cf42a26694e2 49ec19b58d0389b89f4eb76e6b66dd8aee78ce34 f59327690e6af0f32a243879bf40c2b6fb2461464913046b854f9de0c7d84ae7 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	401 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 99e447efe32135fec934384236dc6986 1eb418391cb045ace8f68acdd3457aa19405ccdf b891e9ee61310b3063f4273ae50ea285f971120f31e4c7178963d2f4ba134382 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	35 B	2023-03-07	2025-04-25
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:50 Last Seen2025-04-25 01:23 Times Seen36 Hash 73ade94ecae6d789dd3301d83e790ac4 78e96ef3edbb38ce10a2c6257f4f8db3a51e56e4 893613b93d6d63adaa2c983fd4677fc380b0cc94b18225f615757ec9959e35c8 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	313 B	2023-09-25	2025-02-08
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-25 05:24 Last Seen2025-02-08 11:33 Times Seen18 Hash d759bfecf7a9f5f46983095d4a4f72fb 61aa4bf30ad57e07b5370c91275c4490530b81bf 87b3acfd7a08f9cae829bcdc81185523b695757aee9f276925924675a342763e Loading...

	www.gofuckbiz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-05-09
Pretty URL www.gofuckbiz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 05:32 Times Seen68185 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	telegram.org/js/widget-frame.js?62	ScriptElement	94 kB	2023-04-20	2025-01-01
Pretty URL telegram.org/js/widget-frame.js?62 IP 149.154.167.99 ASN #62041 Telegram Messenger Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-20 22:54 Last Seen2025-01-01 12:36 Times Seen699 Hash a513d85718a50b7e199640dd0593f02b b9b4177465ae35e0df804a5c3af19303c285d44a 83c9e90b103b22a4da56d4d9c5e1d3f29f30f5bf97039c0ac82f1ea56d40f140 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	638 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 0ceef3d621bc4e1936f2ee1419d1b950 d280bdddb31fe7219544b870505cc0a464bdf1d7 b93c6624bf8b2610fbf6bb43f76cf9c7942983d9f6fe9642597668c7d0413f5f Loading...

	oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small	ScriptElement	13 B	2023-03-07	2025-04-28
Pretty URL oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small IP 149.154.167.99 ASN #62041 Telegram Messenger Inc Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:31 Last Seen2025-04-28 22:18 Times Seen238 Hash 53b6be0f202fb25fce4076bd27f2d81a 3dd9cf1fafdd5181d0848a1f98c8bf5014f3f48a 5a7b86e7a9338bb7c9a0eecd966f2b42a1be4da0e316561a156b3f4671b353db Loading...

	oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small	ScriptElement	188 B	2023-11-22	2024-08-20
Pretty URL oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small IP 149.154.167.99 ASN #62041 Telegram Messenger Inc Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 540d62617c94a9424e60a82042ef4eab cf4f405dba3f5d84066052a7c63ada87ba947a19 9f3443e4a56368af9fb2045d15e7befb61934e101418eb6b29567d1213c6aff8 Loading...

	www.gofuckbiz.com/clientscript/yui/yahoo-dom-event/yahoo-dom-event.js?v=387	ScriptElement	37 kB	2023-03-08	2025-05-04
Pretty URL www.gofuckbiz.com/clientscript/yui/yahoo-dom-event/yahoo-dom-event.js?v=387 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:27 Last Seen2025-05-04 00:13 Times Seen86 Hash f16dcd51fd1d51fac21a9724911184c4 5549ff428576843dcbb70b9986e77dfbec09853a d40743d2f62e70a29644f823731551ac1f13903f07f8e0756aa664bb684f276c Loading...

	www.gofuckbiz.com/clientscript/vbulletin_post_loader.js?v=387	ScriptElement	2.0 kB	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/clientscript/vbulletin_post_loader.js?v=387 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 17ec0c2b85cb1fe3570a90b2171deb20 37e2cc4ccfd34431e1a527d2ad9f354211c3a349 58c37d9a17ae744da9c6601e6f6db619f6469f34f365c1e6a91d837b882c620f Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	220 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 8fe2519ea08e5fb3d8c4f50a44b31203 813dba1b5e4e20a6320d5e078da1b2af1b5ab394 6c24707779adfbab21c4004bd7de8c6bc7132f65b7dd29d5b11b10d46b696c7f Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	33 B	2023-03-07	2025-05-02
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:50 Last Seen2025-05-02 09:36 Times Seen63 Hash 4264b2f698856d8e51797b4e4d070a74 b99cc7deff87350e30c167a38040259ebb382d97 e3d464393c9f7cde20c567be0f67f884cfb24ac31b84b28c512beca478b5b035 Loading...

	www.gofuckbiz.com/sandbox%20eval%20code		148 B	2023-04-11	2025-05-09
Pretty URL www.gofuckbiz.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-09 04:45 Times Seen24808 Hash 64fe6fe97a487c82c5be70158b71aa87 b93ba17d1796e404b0ca1ef6f262bbbb0c427366 3ec8a12103cf9c2e91b9be1329d1e9f1c53043e38a641070650d1b8d07dbbcd2 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	34 B	2023-03-07	2025-03-18
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:50 Last Seen2025-03-18 18:30 Times Seen34 Hash 297d264d1d0a449dfee64706402bc425 d815037a3b30d5e7bc0867f0334cda7253ef6aff e3426b8d49d2fdcfe5cdaf3f3a41008c31cb01dbfeebc1e27e628f0604b832d3 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash e548f894e9ef5661c0d94db919c5ef9d 6fd8e4fd403b425c36d0e747fe8ec7b56fd59127 936bb2ea1240aa5297723936b76e7d6d0d5dd3358e5f447c60166bfd061b7222 Loading...

	code.jquery.com/jquery-3.1.1.min.js	ScriptElement	87 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-3.1.1.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 04:39 Times Seen112185 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 8f0eea60d879a3b287f00d9739b8f967 b2e1eaf3772ef46f5c5a4d0817e3853b6ff6baad 1bdf1c20c2d2a448a048c1d7773ccc315b1809df0002c1746f64bef13fcf9403 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash b12025991e97ccfab6a9a0ff30a864c1 4553e1002459776321b23786d5fca397795e444f 02577a98b3e031a3a04541217fea7727163c9edf79f2760876df9298b741345c Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash a6ca65bb0ae4499278c234812be7f2b2 ba77002d92452d94398353efefef74b1743c178b 673919c8b6f1b32f7bd57053b76420714f2236d5a90e4829a5955953427b08ef Loading...

	www.gofuckbiz.com/clientscript/yui/connection/connection-min.js?v=387	ScriptElement	12 kB	2023-03-08	2025-05-04
Pretty URL www.gofuckbiz.com/clientscript/yui/connection/connection-min.js?v=387 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:27 Last Seen2025-05-04 00:13 Times Seen95 Hash ed935da9668b7350505daa30027a6f44 10ebcea9a5b9a89ad271c462fdafb5d012b9af64 a0297b3ea37cda46af5a08ed89b1563987e6f6a233286e1a373668776134841c Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 997882dbdd035c47178b63f23ff4c98b 5ab8576a63c1f4fec0b62157c7d407784f6b900b e2c7193d917980729bcaaa470a2a207f6f1d3827ba73db8fa016ef4409096787 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 96fd311c158721fc2ff28d7a85a4d692 0d2e8f1cd58fe8cb497192fb6e9cb0bdf7e7d0f4 a8f4ae4683ead656e09516f57ec3c81785a2658f50ebb0815152f40de324eb46 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash b1f1d00a6a8d71d539956035d6510aab 63ada4e7094d3f69024384e75c93e63e08e303b1 b37d71feb562a6f3f412341d3842a4338fc9dfacbed8c73f0344083db5d570d5 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 160e904d508cfe8a0705aad4804e3c2b 5ffff915953b60975451ba96e5fad3580529ee3f ae7ed2d13b1f2916b4b12afd742793c8f99857b468fa9898fd47f5af1e3bd2e3 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash d1259b488bfa60d0cf46b95c2f9d4b24 81c01b6890174842579eb5ef5af73411d99c8282 4edd8b9254d132041673363113946396e7e4ef0d4d59a32e55737bf827f3d795 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	44 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 6d48db2be2bb1b3be4c4ed75c6a04314 3d9705335dea1b7a7834e3c5018ce612717ce2e5 8bb4cc7dd7fce0b27cac69b65d02cf7b87a8ddd93f8030862b3a7cbf8850b294 Loading...

	www.gofuckbiz.com/clientscript/vbulletin_md5.js?v=387	ScriptElement	5.5 kB	2023-03-07	2025-05-04
Pretty URL www.gofuckbiz.com/clientscript/vbulletin_md5.js?v=387 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10 Last Seen2025-05-04 00:13 Times Seen180 Hash 5197e6df4b7a32c54834cdc210c866cb fa94d8ae90bd9a953934c4c4020718530aa8131c 6e4ed9f4271f22c3bb4405155731f16c131e71d4c752060017496c0bbd2d5c85 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	220 B	2023-03-07	2025-05-08
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10 Last Seen2025-05-08 19:44 Times Seen1052 Hash 792802c442588a34d1d28b70b8713d6c 1a7ce717b941f570c17b18c2f0aa6010420c524d 347fc5de8453f3b37e1b23095693407509dcddea53f166d6f48da929755a4d26 Loading...

	www.gofuckbiz.com/clientscript/vbulletin_global.js?v=387	ScriptElement	26 kB	2023-07-02	2023-12-05
Pretty URL www.gofuckbiz.com/clientscript/vbulletin_global.js?v=387 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-02 03:46 Last Seen2023-12-05 08:37 Times Seen11 Hash d3506acdde91cb9db7417d94af111c5e e09ee43af5a2f402b6f3a5020e3d145452e8f8e6 816e70d4f7c4065de218abbb9dded0063ca48206831d4fdf8148ff3873ae16f6 Loading...

	telegram.org/js/telegram-widget.js?14	ScriptElement	20 kB	2023-04-05	2025-05-02
Pretty URL telegram.org/js/telegram-widget.js?14 IP 149.154.167.99 ASN #62041 Telegram Messenger Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:44 Last Seen2025-05-02 10:38 Times Seen973 Hash 1ff8b98c72268de58837846f2056c65a e77fcc14f1efd17d319c9f82627e5789333b9dbe 0f6cdd09b3bbebf50c4e1679aff6f021f5e183a4ba2dea3a0801394599ff6afd Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	104 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 306c77f12614fe6da85e058cc789f2eb 25b8c17f07eca1d9c29abedf9067267b8742a958 f73af766f03769952055af2ee0846785b80b868cf82418801ee95340c2c4f2b6 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	76 B	2023-03-07	2025-05-04
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10 Last Seen2025-05-04 00:13 Times Seen127 Hash 80567d199ec0a4f007810e77c07fe51e cd7ef7f04b30775a8bdabbf39bfad7c7888f0568 9f4168d79595488a7435ecdea075f611c3643ff88e14990a9b618121e95869a5 Loading...

	unknown	EventHandler	0 B	0001-01-01	2025-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 05:41 Times Seen4634224 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	404 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 49ab8dddb71a3782d622b5caf6de7110 29570af21d700c67fbec136b55e123ef59da300e 4ccef864634a60735bed5b5e5f7bd4dd3a68080c59868471a74906d7f62d2ddc Loading...

	www.gofuckbiz.com/clientscript/post_thanks.js	ScriptElement	2.4 kB	2023-03-12	2025-02-23
Pretty URL www.gofuckbiz.com/clientscript/post_thanks.js IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:36 Last Seen2025-02-23 12:24 Times Seen35 Hash 5add619bcc9ea29a491036f8001c79e9 dbc40a88083cd1afcd61b16370ac8be88f05f15a 46949e965750d587d82896a88f33c57c131893ae058ba66e6e4e818225afcc45 Loading...

	unknown	ScriptElement	29 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:43 Last Seen2024-08-20 16:43 Times Seen1 Hash a04f9cf54fbb97ce69065f7153629fd1 46f833810fc17ab07cd446ff0ec75353a8d2982c 49896641d077058639fafcff4c7f4eb0d980cc9e9b42a99d444a3f04b40883fd Loading...

	www.gofuckbiz.com/showthread.php?t=58807	ScriptElement	417 B	2023-11-22	2024-08-20
Pretty URL www.gofuckbiz.com/showthread.php?t=58807 IP 104.21.12.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 15:04 Last Seen2024-08-20 18:19 Times Seen11 Hash 1fe19e9d93213a5502a1bf312ff0bb2e 71901e20b005810a9a666ba18610e6cbba1bac2a 5aca485ce60f4f39d276d75b87501491974ebb85e00910edd44749ea2a0a62b3 Loading...

		Size	First Seen	Last Seen
	#1 Write - 8cb5423027eb3565d0c5b013cd3f18b5	10 B	2023-05-17 22:27	2024-08-20 16:44
Pretty Observations First Seen2023-05-17 22:27 Last Seen2024-08-20 16:44 Times Seen14 Hash 8cb5423027eb3565d0c5b013cd3f18b5 cc184cc6cc0331d716c0374c3efe37507a3a56d5 98ee5ab0a87233f79d43c517bc1cab04ed0375b53143f415e6bd19a48f6b78a4 Loading...

	#2 Write - 005779e84e96484767731eeea7525873	85 B	2023-03-07 01:10	2025-05-08 19:44
Pretty Observations First Seen2023-03-07 01:10 Last Seen2025-05-08 19:44 Times Seen1422 Hash 005779e84e96484767731eeea7525873 99bd58277dacb4bc37a6ee20d69ff377f865cce5 2f07f68c604449e8d89471efc2fea27e93365b3806d2494f6432b2e33d2fdf94 Loading...

	#3 Write - 3a40cbaf8301f4565a33952d3811cbc4	285 B	2024-08-20 16:43	2024-08-20 16:43
Pretty Observations First Seen2024-08-20 16:43 Last Seen2024-08-20 16:43 Times Seen1 Hash 3a40cbaf8301f4565a33952d3811cbc4 b42bee967f2a109294e70bc6cb00228daf88e458 c21dd2255f3658e34712e787eb0f2b4af0ce8950baed197f1e68ad2502bc0895 Loading...

HTTP Transactions (87)

URL IP Response Size

mdakky.com/rpe?a=1&s=1&act=18&src=2&p=1000456&st=1180074&wd=519168&d=ryymie.com&tpl=88&rnd=0.6548223253378955&sbid=&sbid2=intent%3A%2F%2Fryymie.com%2Fvideo-15

185.162.85.20

0 B

URL
mdakky.com/rpe?a=1&s=1&act=18&src=2&p=1000456&st=1180074&wd=519168&d=ryymie.com&tpl=88&rnd=0.6548223253378955&sbid=&sbid2=intent%3A%2F%2Fryymie.com%2Fvideo-15
IP
185.162.85.20:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rpe?a=1&s=1&act=18&src=2&p=1000456&st=1180074&wd=519168&d=ryymie.com&tpl=88&rnd=0.6548223253378955&sbid=&sbid2=intent%3A%2F%2Fryymie.com%2Fvideo-15 HTTP/1.1
Host: mdakky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ryymie.com
DNT: 1
Connection: keep-alive
Referer: https://ryymie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:41 GMT
content-length: 0
accept-ch: Sec-CH-UA-Platform-Version
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecrwqu.com/cuclc?aid=9898567408299755464&t=1701761801&s=877656

185.162.85.3

410 B

URL
ecrwqu.com/cuclc?aid=9898567408299755464&t=1701761801&s=877656
IP
185.162.85.3:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (410), with no line terminators
Size
410 B (410 bytes)
Hash
1e12fc048279ec9405bc26e8af2e1c29
23e02a88cb850fc9137fa9c3609d6b30f2cf25be
9edc3fb468de3a1d2be316d9ac406a436b827ba7eeeba93572c5e08b2baf3842

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cuclc?aid=9898567408299755464&t=1701761801&s=877656 HTTP/1.1
Host: ecrwqu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ryymie.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:41 GMT
content-type: text/html; charset=utf-8
content-length: 410
location: https://track.wbdpnz.com/34cb433c-770b-4be0-a140-affedeca6aad?source_id=a519168&campaign_id=877656&country=NO&browser=Firefox&zone_id=a519168&creative_id={CREATIVE_ID}&format=pops&os=Windows&partner_id=1000456&sub_period={sub_period}&cost=0.0001&click_id=a2_9898567408299755464_519168_2_0
X-Firefox-Spdy: h2

track.wbdpnz.com/34cb433c-770b-4be0-a140-affedeca6aad?source_id=a519168&campaign_id=877656&country=NO&browser=Firefox&zone_id=a519168&creative_id={CREATIVE_ID}&format=pops&os=Windows&partner_id=1000456&sub_period={sub_period}&cost=0.0001&click_id=a2_9898567408299755464_519168_2_0

18.158.88.249

0 B

URL
track.wbdpnz.com/34cb433c-770b-4be0-a140-affedeca6aad?source_id=a519168&campaign_id=877656&country=NO&browser=Firefox&zone_id=a519168&creative_id={CREATIVE_ID}&format=pops&os=Windows&partner_id=1000456&sub_period={sub_period}&cost=0.0001&click_id=a2_9898567408299755464_519168_2_0
IP
18.158.88.249:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /34cb433c-770b-4be0-a140-affedeca6aad?source_id=a519168&campaign_id=877656&country=NO&browser=Firefox&zone_id=a519168&creative_id={CREATIVE_ID}&format=pops&os=Windows&partner_id=1000456&sub_period={sub_period}&cost=0.0001&click_id=a2_9898567408299755464_519168_2_0 HTTP/1.1
Host: track.wbdpnz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ryymie.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Tue, 05 Dec 2023 07:36:41 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
pragma: no-cache
set-cookie: 34cb433c-770b-4be0-a140-affedeca6aad-v4=rrkJaOtbuKG8Hk1CSwMLagAz-5BmLWOJ-laWTrMHVD0; Max-Age=86400; Expires=Wed, 06-Dec-2023 07:36:41 GMT; Domain=track.wbdpnz.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=YCUBWLFylkDFtYn%2BIvStJ96nELVSMzt4ugRWvs8lYbBbR%2Fgz5rSohsY5NvkWxPWGO5S6ZqadJ3tmv9ja4GO%2BrpAMaoWKPe%2FwnTf5KfCOaA3pGN22fUM9HBA6%2B8CIDUqDDWUU7DxrbfO1Q3eFEMOucw%3D%3D; Max-Age=31536000; Expires=Wed, 04-Dec-2024 07:36:41 GMT; Domain=track.wbdpnz.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

onekoh.com/images/play-2/icon1.png

185.162.87.220

7.3 kB

URL
onekoh.com/images/play-2/icon1.png
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
7.3 kB (7252 bytes)
Hash
3d0ab5834c8bf7134e4d21fa3288317f
c31d1a6b9df206f67ea194f4c424cdc372a423c2
0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/play-2/icon1.png HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: image/png
content-length: 7252
last-modified: Thu, 16 Nov 2023 08:25:05 GMT
etag: "6555d1e1-1c54"
x-zone: eu3
accept-ranges: bytes
X-Firefox-Spdy: h2

onekoh.com/images/play-2/icon2.png

185.162.87.220

4.6 kB

URL
onekoh.com/images/play-2/icon2.png
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4576 bytes)
Hash
c947d439eb93367f1af5b2a3d222f057
5b4c10820d39e624bc6df72a113679da80a8e44e
aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/play-2/icon2.png HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: image/png
content-length: 4576
last-modified: Thu, 16 Nov 2023 08:25:05 GMT
etag: "6555d1e1-11e0"
x-zone: eu4
accept-ranges: bytes
X-Firefox-Spdy: h2

onekoh.com/images/play-2/icon3.png

185.162.87.220

7.8 kB

URL
onekoh.com/images/play-2/icon3.png
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
7.8 kB (7847 bytes)
Hash
8f3cc830da0b1fdf66bda7d1d734747b
94588f041eec3a78a8780c8124c56a1434a89277
ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/play-2/icon3.png HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: image/png
content-length: 7847
last-modified: Thu, 16 Nov 2023 08:25:05 GMT
etag: "6555d1e1-1ea7"
x-zone: eu4
accept-ranges: bytes
X-Firefox-Spdy: h2

onekoh.com/images/play-2/icon4.png

185.162.87.220

7.0 kB

URL
onekoh.com/images/play-2/icon4.png
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
7.0 kB (7032 bytes)
Hash
7ad7f32c1c0df7b4975cc41bda4ac435
81d57e996ee6cd9e122592e68ffa3d55c1ba10ff
c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/play-2/icon4.png HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: image/png
content-length: 7032
last-modified: Thu, 16 Nov 2023 08:25:05 GMT
etag: "6555d1e1-1b78"
x-zone: eu
accept-ranges: bytes
X-Firefox-Spdy: h2

onekoh.com/images/play-2/icon5.png

185.162.87.220

3.3 kB

URL
onekoh.com/images/play-2/icon5.png
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3264 bytes)
Hash
1e1a7582b5da63e10485d63f97abc9a0
ca3ee3067f96c732f455bc7c99ec5100194f13f6
196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/play-2/icon5.png HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: image/png
content-length: 3264
last-modified: Thu, 16 Nov 2023 08:25:05 GMT
etag: "6555d1e1-cc0"
x-zone: eu
accept-ranges: bytes
X-Firefox-Spdy: h2

onekoh.com/images/play-2/icon7.png

185.162.87.220

3.3 kB

URL
onekoh.com/images/play-2/icon7.png
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3283 bytes)
Hash
b512735542cb07b3b2dcf153a7dfe456
93bde8875412ce266600e2af1c37123483a50376
e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/play-2/icon7.png HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: image/png
content-length: 3283
last-modified: Thu, 16 Nov 2023 08:25:05 GMT
etag: "6555d1e1-cd3"
x-zone: eu3
accept-ranges: bytes
X-Firefox-Spdy: h2

onekoh.com/images/play-2/icon8.png

185.162.87.220

4.1 kB

URL
onekoh.com/images/play-2/icon8.png
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4064 bytes)
Hash
f92d6474ebc6a3a0b576749cfb4afe98
0f4ce3dcf04873b8098c01d20c44967fb9fce0cc
3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/play-2/icon8.png HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: image/png
content-length: 4064
last-modified: Thu, 16 Nov 2023 08:25:05 GMT
etag: "6555d1e1-fe0"
x-zone: eu4
accept-ranges: bytes
X-Firefox-Spdy: h2

mdakky.com/rpe?a=1&s=1&act=18&src=2&p=1129054&st=1150690&wd=378630&d=onekoh.com&tpl=78&rnd=0.4518716831045575&sbid=a519168&sbid2=

185.162.85.4

0 B

URL
mdakky.com/rpe?a=1&s=1&act=18&src=2&p=1129054&st=1150690&wd=378630&d=onekoh.com&tpl=78&rnd=0.4518716831045575&sbid=a519168&sbid2=
IP
185.162.85.4:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rpe?a=1&s=1&act=18&src=2&p=1129054&st=1150690&wd=378630&d=onekoh.com&tpl=78&rnd=0.4518716831045575&sbid=a519168&sbid2= HTTP/1.1
Host: mdakky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://onekoh.com
DNT: 1
Connection: keep-alive
Referer: https://onekoh.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-length: 0
accept-ch: Sec-CH-UA-Platform-Version
access-control-allow-origin: *
X-Firefox-Spdy: h2

onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168

185.162.87.220

9.6 kB

URL
onekoh.com/play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168
IP
185.162.87.220:0
ASN
#39572 DataWeb Global Group B.V.

File type
gzip compressed data, from Unix\012- data
Size
9.6 kB (9639 bytes)
Hash
4f52e327aad933b0dd4ea168e3bddb11
1ac23434deb09b168d0016837f1a1883bd9de47f
fbe97e486e581e5f7cf77ea420d3b189115ab635993b74920bcfa6fe38139d30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /play-2_1?h=waWQiOjExMjkwNTQsInNpZCI6MTE1MDY5MCwid2lkIjozNzg2MzAsInNyYyI6Mn0=eyJ&click_id=wosrsdiknh6tfngt2qftvpeo&si1=a519168 HTTP/1.1
Host: onekoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ryymie.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.25.0
date: Tue, 05 Dec 2023 07:36:42 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: truniq=1; expires=Wed, 06-Dec-2023 07:36:42 GMT; Max-Age=86400; path=/; domain=onekoh.com
x-zone: eu
content-encoding: gzip
X-Firefox-Spdy: h2

230.mbvnclickpop2.site/clpp?sid=10&d=2&data=p5WAWWdKDljzQA0CqJpv6usqngxcPspa7yEtv-UsaSiNB8-m_yLdwTpy41zUFaemQaKWgP0N-QbpU6jl8f6j7MTOLulEsrwGSifC8AKynFbUW65s5rlqXDWXBNNkrOLCqJRdMOAKi085xUUidEmnIV9_LppkGXmwUMtytFblKP8iEbarE7CBmIejUJo4o8n10joTZyzu89h5NeFSp6EBzbpuPu43q29MnA_vb9eJ82n1CYo_QGweimHD889u0FTdpiOzFcCgVYszjuuB0ozdk-LR2j1djWEv71cVP-O2jlk69nKm9KdRwo4YLY3sbOqeUFZ2xzLWcCafRV4iSmAs69YL0p6vO8-wWwCBMeBcY2WBI4RU5oituvYK_CLnE06jqa4dcOKuanccZzGMZ1DeRgkbGLM8zq5oUSlUT0dxgFc

136.243.78.223

310 B

URL
230.mbvnclickpop2.site/clpp?sid=10&d=2&data=p5WAWWdKDljzQA0CqJpv6usqngxcPspa7yEtv-UsaSiNB8-m_yLdwTpy41zUFaemQaKWgP0N-QbpU6jl8f6j7MTOLulEsrwGSifC8AKynFbUW65s5rlqXDWXBNNkrOLCqJRdMOAKi085xUUidEmnIV9_LppkGXmwUMtytFblKP8iEbarE7CBmIejUJo4o8n10joTZyzu89h5NeFSp6EBzbpuPu43q29MnA_vb9eJ82n1CYo_QGweimHD889u0FTdpiOzFcCgVYszjuuB0ozdk-LR2j1djWEv71cVP-O2jlk69nKm9KdRwo4YLY3sbOqeUFZ2xzLWcCafRV4iSmAs69YL0p6vO8-wWwCBMeBcY2WBI4RU5oituvYK_CLnE06jqa4dcOKuanccZzGMZ1DeRgkbGLM8zq5oUSlUT0dxgFc
IP
136.243.78.223:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
310 B (310 bytes)
Hash
bc879d51c4b1ab9655257add6b2a820d
736d141937023ce1a5919c6c7e51b2c9f5730974
09bfc95481bf089245e8695cbbadd1007fca1a92e54fb3960fc8fa6a028f3038

HTTP Headers

GET /clpp?sid=10&d=2&data=p5WAWWdKDljzQA0CqJpv6usqngxcPspa7yEtv-UsaSiNB8-m_yLdwTpy41zUFaemQaKWgP0N-QbpU6jl8f6j7MTOLulEsrwGSifC8AKynFbUW65s5rlqXDWXBNNkrOLCqJRdMOAKi085xUUidEmnIV9_LppkGXmwUMtytFblKP8iEbarE7CBmIejUJo4o8n10joTZyzu89h5NeFSp6EBzbpuPu43q29MnA_vb9eJ82n1CYo_QGweimHD889u0FTdpiOzFcCgVYszjuuB0ozdk-LR2j1djWEv71cVP-O2jlk69nKm9KdRwo4YLY3sbOqeUFZ2xzLWcCafRV4iSmAs69YL0p6vO8-wWwCBMeBcY2WBI4RU5oituvYK_CLnE06jqa4dcOKuanccZzGMZ1DeRgkbGLM8zq5oUSlUT0dxgFc HTTP/1.1
Host: 230.mbvnclickpop2.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://onekoh.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 07:36:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

allmilfswat.com/redirect?url=https://www.gofuckbiz.com/showthread.php?t=58807

94.130.64.156

200 OK

288 B

URL User Request GET HTTP/1.1
allmilfswat.com/redirect?url=https://www.gofuckbiz.com/showthread.php?t=58807
IP
94.130.64.156:443
ASN
#24940 Hetzner Online GmbH

Certificate
IssuerLet's Encrypt
Subjectallmilfswat.com
Fingerprint9B:39:DF:BD:71:A6:0D:83:40:D5:4F:DB:3E:1C:68:BA:9F:3F:C4:DB
ValidityThu, 16 Nov 2023 10:24:38 GMT - Wed, 14 Feb 2024 10:24:37 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
288 B (288 bytes)
Hash
d3473be813559597fb8c0ed1139139b0
f8cc3b991557069a6920f1e73ab487983e10975c
155a56c349a94aeb01ef530d766a0bc1f180fe0493b33c81be5807bb85cd90ca

HTTP Headers

GET /redirect?url=https://www.gofuckbiz.com/showthread.php?t=58807 HTTP/1.1
Host: allmilfswat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 07:36:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: BPSESSID=r0qbcfkprvgsdeua0ccmmq91f0; path=/
Expires: Wed, 04 Dec 2024 07:36:43 GMT
Pragma: no-cache
Cache-Control: max-age=31536000, public, no-transform
Content-Encoding: gzip

www.gofuckbiz.com/images/compro/spacer.gif

104.21.12.188

200 OK

43 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/spacer.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /images/compro/spacer.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 43
last-modified: Sat, 31 Mar 2007 12:46:00 GMT
etag: "460e5808-2b"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PQDfEo6ebkusSuCBp6W6LpQdJcB9FElRZrRxE%2B3oq78IaxgxaKlZ9%2FXHOMJczgPK9Js6qWzjTrCotD%2BnpnE2Eh4jDcuv2v8Acr2GpyVPrROimaeQxrer02ghq1th%2BdRydIQFrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae1f3bb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/superheader88.png

104.21.12.188

200 OK

43 kB

URL GET HTTP/3
www.gofuckbiz.com/superheader88.png
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
PNG image data, 2310 x 270, 8-bit/color RGB, non-interlaced\012- data
Size
43 kB (42986 bytes)
Hash
16b3556971df7eb115699a2a71af86bc
304dbdfb02eeb5fd777f04e584eb8ea0e5f75c16
53c43b7b14c8df17191c5a2104bcfd0e1a48778c5b2498e79df9a1b69458c9ce

HTTP Headers

GET /superheader88.png HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/png
content-length: 42986
last-modified: Thu, 30 Sep 2021 21:38:31 GMT
etag: "61562e57-a7ea"
cache-control: max-age=3600
cf-cache-status: HIT
age: 4135
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n3%2BHiZr1FWjVGmm770whSDE7IRLM3EHNzm8rwhR%2BcYMNIDHuxTlu%2FpcP9TeDs1E3vzDmzIEfjnTdOzIK3%2BqtH1vUy2JK2CiLUAOJpv1qya0eeLNUIDIvajD71lLkvOPTTNxD0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae1f3cb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/head/h1.jpg

104.21.12.188

200 OK

19 kB

URL GET HTTP/3
www.gofuckbiz.com/images/compro/head/h1.jpg
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2008:06:10 14:46:14], baseline, precision 8, 507x85, components 3\012- data
Size
19 kB (19315 bytes)
Hash
2b770292deace4840d0146bca57ac3ac
8100e5017bfa8fc6b343249bd483b45d701b12d5
af94ff58b7d0956e2c0ee5b97e5146a28ffca95b2d9871272b6b784b749f6c6c

HTTP Headers

GET /images/compro/head/h1.jpg HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/jpeg
content-length: 19315
last-modified: Mon, 22 Aug 2011 15:10:00 GMT
etag: "4e527148-4b73"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uq5PdF1FRT8HfWo5gQPG5jKv%2FesQUCkAEPag9Psj33cFKlGvRrWisoZP2UnE8ZD8gM1UelVJk%2FaRJjVoWVFyTnUByjvZ41Ueq90Vq%2FPhkOeKTbBuKPNMfbJWCQcVzolngLcrow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae1f3db4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/misc/navbits_start.gif

104.21.12.188

200 OK

113 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/misc/navbits_start.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 15 x 15\012- data
Size
113 B (113 bytes)
Hash
4bf2a7efa516e869aa8e1931ec3f551a
f3e66363d99c80c0f05ac9cabf4907b23cb823fc
38264cb9e8537bb960bdf24af8e8dab9db5d190159b74008ddc9286b60fd9e71

HTTP Headers

GET /images/compro/misc/navbits_start.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 113
last-modified: Sat, 31 Mar 2007 12:45:51 GMT
etag: "460e57ff-71"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LL%2BhbfXXlgcJj1qoHKzJqC%2BfLCtEYvoJUrmQnsCYoDnGGEpmHimu3b99X2sQ7gJvNGc82cMQNwnEg3b5CMUJQDSek5Y7BQ7dzSW63VxVEWk8vIChqhQJun%2B4s%2BpmY8mNGG3kbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae1f48b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/misc/navbits_finallink.gif

104.21.12.188

200 OK

136 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/misc/navbits_finallink.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 30 x 15\012- data
Size
136 B (136 bytes)
Hash
1de80f315bf6846804b75757c7675b03
562809129658e5178f72363a04104fd891423459
b58fa6aa4f6cb9aa54de20d35b93e42b610afb7c7e21f6dab8b22d4741004f67

HTTP Headers

GET /images/compro/misc/navbits_finallink.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 136
last-modified: Sat, 31 Mar 2007 12:45:51 GMT
etag: "460e57ff-88"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vf1ZAVxu77DEeYKfNi%2Fay9rECOYh3pKFGRrXp5j2MG02mIzkaxMxnt4%2Fbugygx3AO7mUDNt598RKJdCOfbJ4ByVQ4das%2FV9v3JeCjeWHJYE5JdaKFOvpum%2Fz2MXP3IdqohznSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae2f52b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/adv/wapempire/minibanner.png

104.21.12.188

200 OK

14 kB

URL GET HTTP/3
www.gofuckbiz.com/adv/wapempire/minibanner.png
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
PNG image data, 475 x 27, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14546 bytes)
Hash
1cf5e39778a368ee89c6b925cccc4cdb
2350e478296fdbabf788cd6a066946506c7ceada
8fd6369d94165d983c588f480ea2e79e3b2d6cff71dd5dee8b9a502f1bcb3fb8

HTTP Headers

GET /adv/wapempire/minibanner.png HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/png
content-length: 14546
last-modified: Mon, 12 Jan 2015 10:06:04 GMT
etag: "54b39c8c-38d2"
cache-control: max-age=3600
cf-cache-status: HIT
age: 4135
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OUBbUZtI%2BOrDgRHLVcVXt616kt3P8BbCrexAHSnIRXm5B4JvIyNq6nBVeBgFkV2I%2FPAGGLFJAlpqUvyXne6Uto89i6C41PnbMHZDC4Rez4oEype31XForHI4BbQtlGNSiD%2F2PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae7fa1b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/statusicon/post_old.gif

104.21.12.188

200 OK

522 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/statusicon/post_old.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 10 x 11\012- data
Size
522 B (522 bytes)
Hash
9bb9b2c0b7cb21c45f3b69148c3bcd81
e6f9c10eedcfba2378c779bb6457317a4e605211
2a6dfba8f06b9513236b98f83820767514890fd3a471b9f9e15ca343254ec7b4

HTTP Headers

GET /images/compro/statusicon/post_old.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 522
last-modified: Sat, 31 Mar 2007 12:46:06 GMT
etag: "460e580e-20a"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CUsyWnsRvi5n1QIR7wa5bJ%2Bj4YxDubU7PjtMgBnlF6ouAwrfw6ZpQnFyoqCcpbKmzdSIbEl8HWrriM251RM7o3sqRrpNc6zz3vmBIqR9LdAzD%2FqGWAFXFoNXwrZgk3nbvKIRRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae7fa2b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/reply.gif

104.21.12.188

200 OK

905 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/reply.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 97 x 24\012- data
Size
905 B (905 bytes)
Hash
f004579ce3fdfa085e882e9fa20a2eaa
16dc1582ab0d90ac4d0f2fa9520c87fed610ac7e
2b5d3945657bd32c96147ff9e828b51a8eee84cc05bebb2a0d62d2025375f77c

HTTP Headers

GET /images/compro/buttons/reply.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 905
last-modified: Sat, 31 Mar 2007 12:45:35 GMT
etag: "460e57ef-389"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PLL4i0yIDg1Y0XewoXdqwi647ELC%2BiycUaDeTLNNst10X7eYZXHHvi3BCcSnQPJYcGIhmvp4hNUwsORk7Q74NVOtFy%2FGZd5N7IqhsATBZX82i6VzB4mxNO%2BrOmcJEE3B93TmDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae7f9fb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/icons/icon7.gif

104.21.12.188

200 OK

1.1 kB

URL GET HTTP/3
www.gofuckbiz.com/images/icons/icon7.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
1.1 kB (1058 bytes)
Hash
d7e3c3793205495bf58a0f77be55f431
695f35169fe330bfbf7ca5a491a4a51644140355
27395f953d1ebf59b1487e3dae922fec080bbc162c13d189bf8acb080d82248e

HTTP Headers

GET /images/icons/icon7.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 1058
last-modified: Wed, 18 Aug 2010 09:55:46 GMT
etag: "4c6bae22-422"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CzuWySTBNkk%2FDOLT0MbSMcW2Mc0vRxa%2BkMgh3yhA4fbzkmJB0VMv5b7N%2FIdMBsiCywCaLmW%2F%2BvCx5%2BKjDUXh30QhrIM9X5IpLO69%2F7822Zr7thIef206A5JPGWI4KphUNc4GQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaebfe7b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/smilies/crigon_04.gif

104.21.12.188

200 OK

8.3 kB

URL GET HTTP/3
www.gofuckbiz.com/images/smilies/crigon_04.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 58 x 43\012- data
Size
8.3 kB (8282 bytes)
Hash
5c10fd5ed86d45f88b4c7abb0911e1dc
b0cf2d80c46a9e392e6bbcbc298c96364cbac667
6c19faade67d38886486e2c5c4077dd71b8a6ce71fe1fcf27bd307bf9c71eb0d

HTTP Headers

GET /images/smilies/crigon_04.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 8282
last-modified: Mon, 11 Oct 2010 20:09:07 GMT
etag: "4cb36ee3-205a"
cache-control: max-age=3600
cf-cache-status: HIT
age: 4273
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcvz8qFBGvIikW%2Bq%2F0IccnKv9Bygc7ouW3NgergGLaWxMrutQMfILHJs6gmRAv6dscm8bsV4PjYkUKdxoQK8ydFYa1rIV35LrWc9JC48zIMJ%2BazN7FjO%2FQvV%2B%2B7905QNOuVN7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaebfebb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/smilies/drinks.gif

104.21.12.188

200 OK

16 kB

URL GET HTTP/3
www.gofuckbiz.com/images/smilies/drinks.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 51 x 28\012- data
Size
16 kB (15539 bytes)
Hash
f6895f34ab023fe7ad6edbb5858495e1
9193ac1c5914a913026e4b80fd1190362273354a
ba563e55abd73de6f6ca55f8f197475e5cab9f290c6f46bbdd43138d5283dbbd

HTTP Headers

GET /images/smilies/drinks.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 15539
last-modified: Tue, 23 Oct 2007 09:41:36 GMT
etag: "471dc1d0-3cb3"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qsihpOuf5SV2W90mxphpfb4o5gwWPRhSPwICl2vnQB6sYH6MNmOc2xd5Sqygus1exRNbFlTUqksoX2fgMJtzQZsO4J4n0ThCRqehP8SUR4Y92amg0YCxvPQSUe8nl9xViy2FEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaebfedb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/statusicon/user_offline.gif

104.21.12.188

200 OK

1.0 kB

URL GET HTTP/3
www.gofuckbiz.com/images/compro/statusicon/user_offline.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 15 x 15\012- data
Size
1.0 kB (1026 bytes)
Hash
2845e274d9f773811630b4cbf652f5d6
04cf12b46152f06b0f8dcf2576865435ea1d4116
878a12238230aa89c04d014916eef2582ff807c62d244c4c35ad53e869be5e02

HTTP Headers

GET /images/compro/statusicon/user_offline.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 1026
last-modified: Sat, 31 Mar 2007 12:46:13 GMT
etag: "460e5815-402"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q6zjAYmu%2BTDcn5WkbAmMMJ2%2F4baOnjffRdugsmGKMHOZHlGtu51aV5AplfPvhp6AEPncGjbj8IAbQ1crp3zHOIZkXG%2BKWXOyF3YXXUs4LJF8yjkoZvgGgoP0CJETvtHUfJL5eA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaebff0b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/icons/icon3.gif

104.21.12.188

200 OK

1.0 kB

URL GET HTTP/3
www.gofuckbiz.com/images/icons/icon3.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 14 x 16\012- data
Size
1.0 kB (1018 bytes)
Hash
1ec0ae33480dc3739f2ef26c9ca9bb81
8a4c1e88ddcf6536388532fd96ca04175eb5e043
32b82f9ede972e6c1963758f6548c0d670ad80b3957b5e8ff21c8321330bb408

HTTP Headers

GET /images/icons/icon3.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 1018
last-modified: Wed, 18 Aug 2010 09:55:46 GMT
etag: "4c6bae22-3fa"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dv4FQCCnke2alr9pb7DoH6W5UNTtbUr8vaY28A0P9Q2hVvKe3kWi7SYUWX9kDmRKqruCQUna3qX9iBUJemDczR4VBK74RjbiBoWX3h8ac7nGsFPxJmDwoSIYhecdEbS9bp8YHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaebff8b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/quote.gif

104.21.12.188

200 OK

844 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/quote.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 66 x 23\012- data
Size
844 B (844 bytes)
Hash
b1686490f1293bf94212ae618e1c22c7
dbdd4e59e2c5b25c45075733e9bb14179b4b4be3
df2db5f8d13c108b5b9c721524803bcb7cbc3d716c98569c18e4907348b96fb4

HTTP Headers

GET /images/compro/buttons/quote.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 844
last-modified: Sat, 31 Mar 2007 12:45:35 GMT
etag: "460e57ef-34c"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RwYPwjXtebkO%2B57xsVauEA4m0nv52MMYr4gxZS2J1FN6VopQvN7AZGTDDvnxAnnPuCGrBk46WmR4lLlVGBBxeB2SuFQlqgzu6cVOcGbyUXmC4JhqZ0Dixk16QeF1WEN9dMDSRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaebff3b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/smilies/bm.gif

104.21.12.188

200 OK

1.7 kB

URL GET HTTP/3
www.gofuckbiz.com/images/smilies/bm.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 50 x 28\012- data
Size
1.7 kB (1718 bytes)
Hash
69157e07eb3f296c02da274bf9fd6f54
63ea54bfc3cc7d9fa57e562c25062b9608e9e161
6d9af831492a86636b47f01d98e6d5970eeb125102c8670cfc0ef78d36380770

HTTP Headers

GET /images/smilies/bm.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 1718
last-modified: Fri, 08 Apr 2011 12:11:01 GMT
etag: "4d9efb55-6b6"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LSgkD2piyH7xKxJ31c7wNfDm6yvzPYszWazT7wQcteYJRFE6%2BmMv0JEKHjzMbtgxfUsvJ7vz11CvgvFhk1JGgDMxqRm2wleIeIXT0VrfFTZvLkPKmLyVPLjuggKJyaX3ZtkV1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb804b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/adv/truemeds/banner.gif

104.21.12.188

200 OK

64 kB

URL GET HTTP/3
www.gofuckbiz.com/adv/truemeds/banner.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 468 x 60\012- data
Size
64 kB (64271 bytes)
Hash
1f97ba7f331702ac4188a56a83ea2840
676b1f9efa232858cd04da26bfac2107d8ca7bac
149b6eb2bc8721c19aad7dcdbd1cfa3ca80d8323f083b45207b62f0dd8680042

HTTP Headers

GET /adv/truemeds/banner.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 64271
last-modified: Tue, 07 Mar 2023 14:27:13 GMT
etag: "640749c1-fb0f"
cache-control: max-age=3600
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B1C6ETbIwfFz56AjX%2FkWOLSIZB8wn%2FFKnWor0nqSw758ynp9wXPY9LgNFc1A50AAaRdGDpqHQiHbzJFrP5GsSxjsbTjbcxAbKrw1%2BJyA6CqD%2F5nq9Fpf4u2%2Fhbg1a2%2BRVnI13Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae1f41b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/icons/icon1.gif

104.21.12.188

200 OK

1.0 kB

URL GET HTTP/3
www.gofuckbiz.com/images/icons/icon1.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
1.0 kB (1032 bytes)
Hash
ae06a3a4f592a914ea64a6da70f68433
c04d5146d0302ab0861b20629830752e3de1a6eb
ea379a859c86e9a54c2f3e2c4872626cdac664f34cb3cf536d0b03986cba3cea

HTTP Headers

GET /images/icons/icon1.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 1032
last-modified: Wed, 18 Aug 2010 09:55:46 GMT
etag: "4c6bae22-408"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FYk6A2mpvh9kZ%2FCx47NYf%2BHs60vZ7SynGK3BZFxMXhPfr7lXmxWg94%2BzhyYGgEs2NqHiaC9Cbpq5jsO%2FmipMo8miJ%2FvyEUuz7pqkLHwBwNfkoQ0i3P5lOZxjp8WadRZLK%2BDULA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb805b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/smilies/smoke.gif

104.21.12.188

200 OK

18 kB

URL GET HTTP/3
www.gofuckbiz.com/images/smilies/smoke.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 35 x 30\012- data
Size
18 kB (18041 bytes)
Hash
0efdef2153c1c1a3ffdff50be24595ff
27f05e0cf3e125269b59ce79ad7270e70a863b16
a76cce1c8f00be66f8b7b3333b5d1385efa1c55eb74663962b099874e1b72df4

HTTP Headers

GET /images/smilies/smoke.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 18041
last-modified: Tue, 03 Apr 2007 12:33:30 GMT
etag: "4612499a-4679"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M2m8e3Lqu5rUhTGFRR8%2BT5Y0C9D7rol5aDM4ytiXPiEZ4v5tO4057zWsmfDPxdp%2FxsHnP0zb1Cq0AAuXFwrD54sgLTca%2FstcedClqFgPRbQ2yhRKXdl4JX9mAtUrObdy0i%2FmPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb808b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/viewpost.gif

104.21.12.188

200 OK

79 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/viewpost.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 12 x 11\012- data
Size
79 B (79 bytes)
Hash
2d8b8459ca1ba0c04f65f41128286074
57e20e0274357c24609ec48d5b3d097f14b766a6
16ec96eaa65bda5fdd3d8872b18f100c07360ea831491072d1ada06c565c010a

HTTP Headers

GET /images/compro/buttons/viewpost.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 79
last-modified: Sat, 31 Mar 2007 12:45:37 GMT
etag: "460e57f1-4f"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tRxgwivckuMLYhryYHeLh6X1bNnKNB3D3X2fNshLOlwatQBze2VwdoB2dmCI8Cu0EutDKx6lFlvg7AILzSXj78x3xm%2FJwXKP6V%2Frc1H%2F7Cplouqpuwa%2B846h2hjw5ZINFLyy1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb809b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/statusicon/user_online.gif

104.21.12.188

200 OK

1.0 kB

URL GET HTTP/3
www.gofuckbiz.com/images/compro/statusicon/user_online.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 15 x 15\012- data
Size
1.0 kB (1026 bytes)
Hash
37b25dc692976f5557ee7fefe5ebfaa3
723b00b532556a06f24b13daa7483488bc224ce3
2697a16b2c3a49393dd822bfcf3c5802b4e42e1c76bc3382706a44b00b77f7e0

HTTP Headers

GET /images/compro/statusicon/user_online.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 1026
last-modified: Sat, 31 Mar 2007 12:46:13 GMT
etag: "460e5815-402"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5h7M5nEhMCBOgGGnh3BZkuYbGI0zsBHx6WN14vs8%2FLKT2tCy2yWqLYxZlzfAf6GxHnksgwJXURH0Xz1ueeCp4Pu%2FV%2F8h6dDFKePtjzFX%2FcId9n7oA195wMPNEnYScASvQ2Os8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb80ab4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/smilies/wink2.gif

104.21.12.188

200 OK

859 B

URL GET HTTP/3
www.gofuckbiz.com/images/smilies/wink2.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 20 x 20\012- data
Size
859 B (859 bytes)
Hash
199d073dbe9f0800e87cdd35e121473c
c5d36d767e6583d751b23e0f1a0fd4ce9bb3e3d7
94e76f72812152ecd3ceb9691e987182c1d3fc99077009e2afd6b89cd6211020

HTTP Headers

GET /images/smilies/wink2.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 859
last-modified: Mon, 11 Oct 2010 20:49:48 GMT
etag: "4cb3786c-35b"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izRitdjhK0E%2FF9UN273P3gkhEn5XVCw8UYUBWzGeQMZ6vdumENoLmbt721Us8HBW4xUjRvVq%2B0E4fApm0uFs1Yi7V1%2FY2anU7DMpjsZWorDms0W0Yo%2BUwB3gAuILtkbNxBpoqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb80bb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/printer.gif

104.21.12.188

200 OK

124 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/printer.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 19 x 15\012- data
Size
124 B (124 bytes)
Hash
f5872242fec1eccc32e4dc74dd66b7e9
64c0d2946d09ccfa16824fd529e1d0d0b1706f84
84f17822657edfc4b09f73a29d9045a4bb7f593f463478835888f888ba435e41

HTTP Headers

GET /images/compro/buttons/printer.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 124
last-modified: Sat, 31 Mar 2007 12:45:33 GMT
etag: "460e57ed-7c"
cache-control: max-age=3600
cf-cache-status: HIT
age: 582
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a0%2BR%2F9YMJL0JJuApPSMY2x0NUQiCUKJAoRcBS8rUEWn5cS9MQTuZ%2BF0SRrPqc5XlFwTsz6h8JnTlSo1VJY6UJLjfvUeIYxcbA4A42JbYUEhMysRj4wxdjX%2FIxuhYhhC3rg7GpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb80db4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/sendtofriend.gif

104.21.12.188

200 OK

84 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/sendtofriend.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 19 x 13\012- data
Size
84 B (84 bytes)
Hash
4514163ffc1607d20b9f38deb260cd40
ce7c28db218be4289905328cc12344d512e3860c
e9341d8fff2d4fa1c73677be24cace58ea20236a88306978266f09506dd7cef8

HTTP Headers

GET /images/compro/buttons/sendtofriend.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 84
last-modified: Sat, 31 Mar 2007 12:45:36 GMT
etag: "460e57f0-54"
cache-control: max-age=3600
cf-cache-status: HIT
age: 581
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Nysv5F70fQkTnBVTW7LSKhnRtch3aUwtpMpHR8KOi88NOB3gBgf5abaGwRyUQ7HYAnTZY4HG11INCm5unpVUpKvjseUJKKfBR%2B3nUaBymer%2BSdnj5R%2BwSirj0Vd0V521SWuIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb80fb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/mode_linear.gif

104.21.12.188

200 OK

609 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/mode_linear.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
609 B (609 bytes)
Hash
8989ceb2b05e9dfac05b230f85700edb
cc148363fe6c5fce629fef70e95e5127b1569fc9
d6eed5aee517e57150ae2cbd72b55d24f7f9b293c05eea843fbb3f95b5b772c4

HTTP Headers

GET /images/compro/buttons/mode_linear.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 609
last-modified: Sat, 31 Mar 2007 12:45:32 GMT
etag: "460e57ec-261"
cache-control: max-age=3600
cf-cache-status: HIT
age: 581
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8g1pcF7ZQeV2Ek%2F5QqVDTFLKlzWPi0iAw4rf%2BPPHPwxXgCECt8xywCm7UGKMyhcAGS0d0ircdnpQf4HEwpxPvOARNHVMoO4ORPYIi9uP1ZzzY3G50mEnlI%2FRO8VG%2FMK7w%2F0t5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaeb810b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/mode_hybrid.gif

104.21.12.188

200 OK

588 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/mode_hybrid.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
588 B (588 bytes)
Hash
889ca727765d21fa0f4773b193af2fec
ea5acd4848c3aa05cd4e38df9695f37ade7d9821
af2fe0cdcc2c214457b17b8db92cbc1de7940655b5668cdd98ea9f3f05ae18f1

HTTP Headers

GET /images/compro/buttons/mode_hybrid.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 588
last-modified: Sat, 31 Mar 2007 12:45:32 GMT
etag: "460e57ec-24c"
cache-control: max-age=3600
cf-cache-status: HIT
age: 581
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qiNCrYXPy9AYKGGMV5pnzMM7ETZtyArJNGkh0AVYifIzCmt%2FQxCiGgFBMPo4gYyaPB3dZ557RRM6HCmbyncVeLZ4vPfgvWM8mjwMzxIOBqqUkU8XgmT4I1n%2BUL5MuamxiGMUJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaec824b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/buttons/mode_threaded.gif

104.21.12.188

200 OK

562 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/buttons/mode_threaded.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
562 B (562 bytes)
Hash
8c2bade16f2c79f50fba92ac3403be9a
835e6951f9a97545f16007b0d331b3d81a3985d9
c25f920562722be49076b14727a7906d33ed3a91cbd4c2c52060843e11fb9917

HTTP Headers

GET /images/compro/buttons/mode_threaded.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/gif
content-length: 562
last-modified: Sat, 31 Mar 2007 12:45:32 GMT
etag: "460e57ec-232"
cache-control: max-age=3600
cf-cache-status: HIT
age: 581
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sTPaR6NchsRc%2BYZiUauBtvJjrertDADtxzQslmnlCDqFWOUWJnC353Pl50QqtR8jg4%2FlW%2BSp78yiCBvTm%2FpxK5Oc8cup5LBdEDyJuqQ2%2BH8vT8J50RvK%2FPI1%2B%2BgzO185N0sJAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaed826b4f4-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js

142.250.74.42

200 OK

27 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (820)
Size
27 kB (27266 bytes)
Hash
73a9c334c5ca71d70d092b42064f6476
b75990598ee8d3895448ed9d08726af63109f842
517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c

HTTP Headers

GET /ajax/libs/jquery/1.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 27266
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 16:33:15 GMT
expires: Thu, 28 Nov 2024 16:33:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 486209
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.1.1.min.js

151.101.66.137

200 OK

30 kB

URL GET HTTP/2
code.jquery.com/jquery-3.1.1.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32030)
Size
30 kB (30070 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

HTTP Headers

GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 07:36:44 GMT
age: 6961203
x-served-by: cache-lga21947-LGA, cache-bma1628-BMA
x-cache: HIT, HIT
x-cache-hits: 119, 18430
x-timer: S1701761805.682425,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2

www.gofuckbiz.com/image.php?s=96ba7ad1f0978f3dcf5d1742d0201e0f&u=85323&dateline=1680187494

104.21.12.188

200 OK

27 kB

URL GET HTTP/3
www.gofuckbiz.com/image.php?s=96ba7ad1f0978f3dcf5d1742d0201e0f&u=85323&dateline=1680187494
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (26596 bytes)
Hash
8c23c71bb6d5c22c3b8e72e7bc0a6682
ac22b067cb674aa44800f2d5eb2db2a510450ac9
00cbc1e16164eb6db2f46d802a8ecc0b5ec03e30015478a0338ac6d341d483c4

HTTP Headers

GET /image.php?s=96ba7ad1f0978f3dcf5d1742d0201e0f&u=85323&dateline=1680187494 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/png
content-length: 26596
cache-control: max-age=31536000
expires: Wed, 04 Dec 2024 07:36:44 GMT
content-disposition: inline; filename=logo.png
content-transfer-encoding: binary
last-modified: Thu, 30 Mar 2023 14:44:54 GMT
etag: "1680187494-85323"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P17iMJCouAPR%2BZ8uiDnuPHVLutwabBmYBuwitJ%2BGbyZz1sJlcjNPbugzQmSSYxbgkuTfYpHoU9gSxGHvJpLCK4f8f5FXZ4y5u1Fx7waD89LOXmhVq3cQrAcB6jG7IDgCT3m3xw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830a9eaebfe3b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/image.php?s=96ba7ad1f0978f3dcf5d1742d0201e0f&u=14238&dateline=1685744131

104.21.12.188

200 OK

16 kB

URL GET HTTP/3
www.gofuckbiz.com/image.php?s=96ba7ad1f0978f3dcf5d1742d0201e0f&u=14238&dateline=1685744131
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
PNG image data, 103 x 128, 8-bit/color RGB, non-interlaced\012- data
Size
16 kB (16522 bytes)
Hash
2c68109635ea605936377a658a820013
7d2777881ad0fe2d294b0089ce3d5808981c94ca
8162effcc7996199376c02ce063345768d98ce607d34d20f25beb60e581a625c

HTTP Headers

GET /image.php?s=96ba7ad1f0978f3dcf5d1742d0201e0f&u=14238&dateline=1685744131 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: image/png
content-length: 16522
cache-control: max-age=31536000
expires: Wed, 04 Dec 2024 07:36:44 GMT
content-disposition: inline; filename=1robot1.png
content-transfer-encoding: binary
last-modified: Fri, 02 Jun 2023 22:15:31 GMT
etag: "1685744131-14238"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z7ikFUiftZWmhg3nVorNKVARf7sxlgo%2BVbDEHCPFoN1phnutQO3KP5F%2BfSyuw8j1sFroXzo0vSQPqnKOTK9llt%2B34IKW%2F6OsXOsHp01FSWhyfHgwyVpmstVkaTLHsnsId%2BEskA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830a9eaeb806b4f4-OSL
alt-svc: h3=":443"; ma=86400

i.imgur.com/bLhnwnh.png

151.101.84.193

200 OK

201 kB

URL GET HTTP/2
i.imgur.com/bLhnwnh.png
IP
151.101.84.193:443
ASN
#54113 FASTLY

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT

File type
PNG image data, 700 x 700, 8-bit/color RGBA, non-interlaced\012- data
Size
201 kB (200911 bytes)
Hash
1adfafddec4effcfdde38c544135180d
9bd519be5d3c732eef24dceae22df521d8552e21
2e8db247b658da5ca64b487abb7aec7c25bb763dd61b84c58827342bd3658234

HTTP Headers

GET /bLhnwnh.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 28 Feb 2023 10:45:26 GMT
etag: "1adfafddec4effcfdde38c544135180d"
x-amz-storage-class: STANDARD_IA
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: GwZ8eGbn5xfCKRTlB6G8_vi70qfcV_rrmzt14IHrHGzIwqnbHha4Bw==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 05 Dec 2023 07:36:44 GMT
age: 2817189
x-served-by: cache-iad-kiad7000136-IAD, cache-bma1673-BMA
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 41138, 1
x-timer: S1701761805.751806,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 200911
X-Firefox-Spdy: h2

i.imgur.com/BRbnV4r.png

151.101.84.193

200 OK

449 kB

URL GET HTTP/2
i.imgur.com/BRbnV4r.png
IP
151.101.84.193:443
ASN
#54113 FASTLY

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT

File type
PNG image data, 1956 x 828, 8-bit/color RGBA, non-interlaced\012- data
Size
449 kB (448804 bytes)
Hash
5b7187e4f202417efffaa4570108e449
6e157061b31fa8878f82a4ee33105670799c0b51
c6a5ecf82ca3f709b106c4dd0f63b1ed948f30dd5efd6ec1ba096f41a9ffbbcc

HTTP Headers

GET /BRbnV4r.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 28 Feb 2023 10:34:03 GMT
etag: "5b7187e4f202417efffaa4570108e449"
x-amz-storage-class: STANDARD_IA
x-amz-server-side-encryption: AES256
x-amz-cf-pop: PHL50-C1
x-amz-cf-id: 3b0r0PhO4oNCZbooBIud7k5Lmqd-Xgxbpip5HoCDRLfPszsgKwk93A==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 05 Dec 2023 07:36:44 GMT
age: 1698825
x-served-by: cache-iad-kjyo7100150-IAD, cache-bma1673-BMA
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 31474, 1
x-timer: S1701761805.758616,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 448804
X-Firefox-Spdy: h2

i.imgur.com/EXb6cRS.png

151.101.84.193

200 OK

2.0 MB

URL GET HTTP/2
i.imgur.com/EXb6cRS.png
IP
151.101.84.193:443
ASN
#54113 FASTLY

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT

File type
PNG image data, 2998 x 1572, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 MB (2012007 bytes)
Hash
5bfb27d976f2898a51c02fb8a94f5e14
09cf637b8187d23aeb5207c6cf450a3eae91ae71
356e8cb59734d321bd2900909d468b32a6404b893fc34ba0a8e72efbb7ed48d9

HTTP Headers

GET /EXb6cRS.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 28 Feb 2023 10:35:06 GMT
etag: "5bfb27d976f2898a51c02fb8a94f5e14"
x-amz-storage-class: STANDARD_IA
x-amz-server-side-encryption: AES256
x-amz-cf-pop: PHL50-C1
x-amz-cf-id: MA62jXG6u8Qr5M_QEKXeAS1DX01SMl0T7iq8kz9yts9raSUTTzXzjw==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 05 Dec 2023 07:36:44 GMT
age: 2433227
x-served-by: cache-iad-kjyo7100033-IAD, cache-bma1673-BMA
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 52416, 1
x-timer: S1701761805.750836,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 2012007
X-Firefox-Spdy: h2

telegram.org/js/telegram-widget.js?14

149.154.167.99

200 OK

6.1 kB

URL GET HTTP/2
telegram.org/js/telegram-widget.js?14
IP
149.154.167.99:443
ASN
#62041 Telegram Messenger Inc

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
6.1 kB (6120 bytes)
Hash
f2551c1840c06a2b0239a45a202bae00
262a749e2076f5f76ff1b1c2f9c43c58fd811ef2
6c868d8ff3bae0767b58801fe47aeadc0d9b1f9884d3a51cf57c9ac6c0a5382f

HTTP Headers

GET /js/telegram-widget.js?14 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Mon, 03 Apr 2023 11:46:12 GMT
etag: W/"642abc84-4ff5"
expires: Sat, 09 Dec 2023 07:36:44 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

www.gofuckbiz.com/images/compro/compro_L.gif

104.21.12.188

200 OK

152 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_L.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 40 x 1\012- data
Size
152 B (152 bytes)
Hash
a048f5020e7e85343aeeb78188d23b07
96c1acb69439e470592fecfdfa046dd44d76070a
79aecb4eb60e22567a84e18f354b53a054d8c9b2181c37484b00b28c4a4be0fd

HTTP Headers

GET /images/compro/compro_L.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 152
last-modified: Sat, 31 Mar 2007 12:45:42 GMT
etag: "460e57f6-98"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TecPN%2BRfCqtsJJ8556QCkrCIkvZPEqfp7x7nRFDR62zuMWl7zrN%2B5qa9kagWfPQ5ykmMf3xtPpwbF4nqPqvHVmTwUylqsq%2BHpn4PQL78QqchWQM7fqlpW%2Fl262pMmv%2FSvyHqfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c27b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_topbg.gif

104.21.12.188

200 OK

280 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_topbg.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 1 x 76\012- data
Size
280 B (280 bytes)
Hash
f38f867d8192eb24aa9bb5914726de7c
83f4259ef1842b5547a97a079e194c27de7e9d82
4dd98084476acbb320c28469ff5b7deb41195359114f36d24a57a887eb10d6ec

HTTP Headers

GET /images/compro/compro_topbg.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 280
last-modified: Sat, 31 Mar 2007 12:45:44 GMT
etag: "460e57f8-118"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yaydQZyM77v0KSXRX6y4rdJ9BbBjQQ%2FiIZ68xT7zOJuJMv%2FOCwLCRd7yKRnZc%2FSCLqwAMG876tGGbKP1G%2BTMbAo%2Bbf3mflgPnA19bvLcTwuzUpY4wLJfj2CtS6w6g6DOjK4exQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c29b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_topL.gif

104.21.12.188

200 OK

1.3 kB

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_topL.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 64 x 34\012- data
Size
1.3 kB (1260 bytes)
Hash
be9d2cb04a4cd3e6a5c67d6658100329
ac9cdddfc3c1f4a6aff069f08f60c5aa0df70ba6
a8f2146bf68c5e18c57b69f81fc7d0869381c71c424e738eaa1dc7361adb408b

HTTP Headers

GET /images/compro/compro_topL.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 1260
last-modified: Sat, 31 Mar 2007 12:45:44 GMT
etag: "460e57f8-4ec"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o%2FJhFhMhRFPTyeddlIjTshjQLZyGphHe0MVXf5VcQCXPMA6g2fLiUVnbJdA5UQdr4GlgwCe3WwVzXklH09dqiEVoMFlZCm9XBkv1EN%2BQ5RDSW%2FkTn0YCxxkc%2B3PrqZRFKdVmNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c32b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_headerbg.gif

104.21.12.188

200 OK

80 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_headerbg.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 4 x 87\012- data
Size
80 B (80 bytes)
Hash
bdc18370967890f574b4bd9ba78968fa
c40bbe965d153a62e04ba78392df69e7ecd5e6b7
8224ef24d8995b8474b76ee016e1efa9114c06bfe9076e68e23784e956334092

HTTP Headers

GET /images/compro/compro_headerbg.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 80
last-modified: Mon, 02 Apr 2007 20:47:29 GMT
etag: "46116be1-50"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Npga4dyRC9MWp4dZiJubaja%2BmsPj7B%2BFakvUS2AxP2NCCcat4VltxTfvjae2VbxFuj%2FpEfEABb7FiyAeI9tZJyl1i0XL2wpDMz1cxSVAap6nJrSoYn1tJ%2FQv%2BhpadP%2BpseZnXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c3bb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/head/h2.jpg

104.21.12.188

200 OK

829 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/head/h2.jpg
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 25x85, components 3\012- data
Size
829 B (829 bytes)
Hash
ef5ba0dc6492c7337382029c3dd2b412
96fcd3104d059b1d54aa66e7bc6b3d4b14cdefef
f2559ac59425d9d1682f318c2dcc82f39a09037396fe82ce80660f8ac6afde1b

HTTP Headers

GET /images/compro/head/h2.jpg HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/jpeg
content-length: 829
last-modified: Mon, 22 Aug 2011 15:10:00 GMT
etag: "4e527148-33d"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tVnGs8v0nYU5xsrTjn4MePly8%2FThl9t6OAVq0nkqTHWbT1G3vwchVANBb6vTh1B%2BSsi%2B%2FFT9tD8i1vefxr5HTkFoeJg3CF7VAKz7Wh2UnmGcXTj6tzanHjFurO0rvoht4TSIYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c3eb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_logo.gif

104.21.12.188

200 OK

6.0 kB

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_logo.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 177 x 67\012- data
Size
6.0 kB (6000 bytes)
Hash
3b9c168c37a292ea75d8266c26d5cf6f
bc1986c645fa25886f42646e3e11bb23798156ab
9d72c192bbf29fdfedac1dfdf2042513022cd3e9377064e925bf307d1bdcf720

HTTP Headers

GET /images/compro/compro_logo.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 6000
last-modified: Mon, 02 Apr 2007 15:07:22 GMT
etag: "46111c2a-1770"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EJF1YvTdIESa2pbPCFbn62Kf5c%2FdgFov%2FTCQpI897eLdcT6EKiovaSeZVoN5JfrYXHbJwU4epLKNMRHJpQ928Tg1PhKfM6AUL%2B%2F3EleuoL6jiMWcxcqW6mE7ep2ovEvWv1UTJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c36b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/head/h3.jpg

104.21.12.188

200 OK

7.8 kB

URL GET HTTP/3
www.gofuckbiz.com/images/compro/head/h3.jpg
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 521x85, components 3\012- data
Size
7.8 kB (7761 bytes)
Hash
d0c00cbaa37aa6d46ec9de24aa163c26
bdb02336117839147a641f6ff70c1be60b2bb274
ad9c2c2eef23769f61f253b523902079d61e213c66ba055e6e85ee321188657c

HTTP Headers

GET /images/compro/head/h3.jpg HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/jpeg
content-length: 7761
last-modified: Mon, 22 Aug 2011 15:10:00 GMT
etag: "4e527148-1e51"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NNUpQCx2zkZA8krCODpd5NicR59F5Nt6U4i9iKbsrtcehf5M2xYcgXNizLyYIs8%2BnxcQHsvIhTiyXMCN7Xcykb229wgAo%2FLtOWzAYzKfdVUWnqAfB5fzaJhTzKOU9KnqXDbCPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c3fb4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_cbg.gif

104.21.12.188

200 OK

641 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_cbg.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 1 x 333\012- data
Size
641 B (641 bytes)
Hash
82051f166df3905c6a02bd62b532fa12
be82bc5b068eb8190a4f0300f7b76358c31deac1
a512f5ced456ebb00297fff0632abd17418c154d433770282cd33dec06e6a1a1

HTTP Headers

GET /images/compro/compro_cbg.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 641
last-modified: Sat, 31 Mar 2007 12:45:39 GMT
etag: "460e57f3-281"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nuJYWGH5YNRFj%2BD5EUjDp6k393ExOcPzQsLR1aRbjfnhST2j0oSVU1H411I5cWt5TiXkMkHzuQ7h%2BoIJC7VFXy13rbuZ8a5uFrk6QRjQL7yq9KjRAPn6wjJ1nYO3KLkt4jYAPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb37c47b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_alt2.gif

104.21.12.188

200 OK

167 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_alt2.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 58 x 1\012- data
Size
167 B (167 bytes)
Hash
433d933c1e4d328bd22ca27df6dbfa78
aa042845ebfbd1f54c8a8d597661c27c88ef6bdb
085c5e55aab650e1d55363ac0fbdbc3c0be1cdb75198d5f264448541f8b1ff94

HTTP Headers

GET /images/compro/compro_alt2.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 167
last-modified: Sat, 31 Mar 2007 12:45:39 GMT
etag: "460e57f3-a7"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VGcEqWS69NbxqoypuqpYPP11zdJffCpYigTp43ywn23XqgqpPIUAz8b8EWZwJP35Z9hYshD7sVuv0lSmmQ1SLOhXayH1rYsQ5UC3yh7DTgut2e0%2FKunmZTcWkry1S3BU%2BrrY%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb38c86b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/sm/tg_btm.png

104.21.12.188

200 OK

1.4 kB

URL GET HTTP/3
www.gofuckbiz.com/images/sm/tg_btm.png
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
PNG image data, 40 x 19, 8-bit/color RGB, non-interlaced\012- data
Size
1.4 kB (1436 bytes)
Hash
3395271c074bf2c5d551ffef35659fc0
5293b5b04aa2a0a91398646eecb017625b3d4cbb
54b7331ba8fd80ec2485e49e3abfc721c229c5aacfd048283a72373f465e585b

HTTP Headers

GET /images/sm/tg_btm.png HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/png
content-length: 1436
last-modified: Wed, 23 Dec 2020 07:27:32 GMT
etag: "5fe2f164-59c"
cache-control: max-age=3600
cf-cache-status: HIT
age: 282
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QXcd3Y29geWwnUdoLdcoujNdMQ6%2FSVGpGSAPorbcWiV0Ao1VRhv%2F2ifEDOF5NawQW1jKZ5ArawugYFjYG%2F8GqLy4nYYWPuj2fdbud6NIhKlj3PAEAnui6nUMIPyW4USQv4zhfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb38c9ab4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_headbg.gif

104.21.12.188

200 OK

68 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_headbg.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 1 x 38\012- data
Size
68 B (68 bytes)
Hash
a890a40ae35947f35276df47b5d78524
aba510915ba9fc28b4f9388cca2b47e74a08be57
9ef45599251ada288e3f34e727fb88a578bc0bdce27224b31b4975263ce30ceb

HTTP Headers

GET /images/compro/compro_headbg.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 68
last-modified: Mon, 02 Apr 2007 20:47:11 GMT
etag: "46116bcf-44"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7zru2VRA3yyJI7upopb2EeaqisomvD6i28Sq%2BtGMVUq6r4GvhBahQdfGR%2FMb%2FqpsIwtHQKsNBvFE6X3QG2dmJN0KMYAtm1GBPQrZaLrHKlugw84ZBESd1ndqAbvGO6qF4np5kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb38c9db4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_catbg.gif

104.21.12.188

200 OK

68 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_catbg.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 1 x 38\012- data
Size
68 B (68 bytes)
Hash
0574c3311973af89102c5e199a376620
2e8d77ab2a3e75d634843a1ca1023b08fcb8da5c
29b023e8de537b006336291fa484e09c426228def96ad415bfa139ecfd13a4a0

HTTP Headers

GET /images/compro/compro_catbg.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 68
last-modified: Sat, 31 Mar 2007 12:45:39 GMT
etag: "460e57f3-44"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r%2BH4ZVoX1n6u16PfIKJStIpIlzKbk5J0Hcw2KwJYUKuwJ2eMjBlJEKaBjIL20R4Aj5%2FquS%2FmjwkkY3msYR11v8uH6%2FTQnxg0GfnJ8bY4WUt%2BkbfK%2FpLLyBFAANWr2lSaOuQYXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb38c9cb4f4-OSL
alt-svc: h3=":443"; ma=86400

oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small

149.154.167.99

200 OK

715 B

URL GET HTTP/2
oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small
IP
149.154.167.99:443
ASN
#62041 Telegram Messenger Inc

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
715 B (715 bytes)
Hash
3fad13936eb0269d571f050b7b9f7edd
eb89999a440f8cb2bddf9f18f76acc9e773a3c5e
4b9d78d3e5b4265779b85ee7ef1f361d04d0ea463529b282b0fd2f7925fd2aa6

HTTP Headers

GET /embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small HTTP/1.1
Host: oauth.telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: text/html; charset=utf-8
content-length: 715
set-cookie: stel_ssid=e1f937fb1dd016cd23_5783373646808439919; expires=Sat, 07 Dec 2024 08:52:26 GMT; path=/; samesite=None; secure; HttpOnly
pragma: no-cache
cache-control: no-store
x-frame-options: ALLOW-FROM https://www.gofuckbiz.com
content-security-policy: frame-ancestors https://www.gofuckbiz.com
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

min-api.cryptocompare.com/data/pricemulti?fsyms=BTC&tsyms=USD

20.4.130.154

200 OK

44 B

URL POST HTTP/1.1
min-api.cryptocompare.com/data/pricemulti?fsyms=BTC&tsyms=USD
IP
20.4.130.154:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cryptocompare.com
FingerprintFD:5B:28:EA:D8:BA:05:91:57:A1:4C:D4:B5:35:2A:1B:65:6B:4F:55
ValidityMon, 24 Apr 2023 12:02:27 GMT - Sat, 25 May 2024 12:02:27 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
64a85d5cc0354c53aecdc3afe5caf05e
c53e185dcfa7759a15ac49e670a0e29da58c4bd8
ae9333f145c1898c081b5d4c6ea11729aa7136770b5b67e195947c6a09728f9c

HTTP Headers

POST /data/pricemulti?fsyms=BTC&tsyms=USD HTTP/1.1
Host: min-api.cryptocompare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gofuckbiz.com
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 07:36:45 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Security-Policy: frame-ancestors 'none'
Access-Control-Allow-Origin: https://www.gofuckbiz.com
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Cookie, Set-Cookie, Authorization
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=10
X-CryptoCompare-Cache-HIT: false
X-CryptoCompare-Server-Id: cc-api-min-v2-14
Content-Encoding: gzip

www.gofuckbiz.com/adv/armadaboard/banner1.webm

104.21.12.188

206 Partial Content

167 kB

URL GET HTTP/3
www.gofuckbiz.com/adv/armadaboard/banner1.webm
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
WebM\012- EBML file, creator webmB\20\012- data
Size
167 kB (166949 bytes)
Hash
90805fb5205fc881c87f0bd56e4a299d
df3d0f250ab070cf84ac974be16b6e72a8ce933b
ab16990f01c48abf93dc4724acc9a2b5e56f52f1ef65b3a8bf21ee16dc04bebe

HTTP Headers

GET /adv/armadaboard/banner1.webm HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: video/webm
content-length: 166949
last-modified: Tue, 13 Nov 2018 16:43:19 GMT
etag: "5beaff27-28c25"
cache-control: max-age=3600
cf-cache-status: HIT
age: 4136
content-range: bytes 0-166948/166949
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hVEw%2F%2Fxm0nzd%2FQpip5X9q330k4C3uSkduO4JD%2BAHkA2fBHjtt0NsjWCfqjSvBNvNB5gPwBPDaNXHDjOnytxb8odB0%2BvXIwLk5UqDwdd%2F1zx6tiZ5H8jfZVYXaveEAs2c7QjVkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb5ae71b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/adv/armadaboard/banner2.webm

104.21.12.188

206 Partial Content

735 kB

URL GET HTTP/3
www.gofuckbiz.com/adv/armadaboard/banner2.webm
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
WebM\012- EBML file, creator webmB\20\012- data
Size
735 kB (735274 bytes)
Hash
f2f12d7146a8f39f656129901c47e764
894521f34e3187df9f45b336c58e624b5c7b0c8d
bea17a108018493a06c3b5dfc7ee5ecd00a00d626a219fe976f10b5e0e262275

HTTP Headers

GET /adv/armadaboard/banner2.webm HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: video/webm
content-length: 735274
last-modified: Tue, 13 Nov 2018 16:43:20 GMT
etag: "5beaff28-b382a"
cache-control: max-age=3600
cf-cache-status: HIT
age: 4136
content-range: bytes 0-735273/735274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6nVbUuwBJ8Kj21l5h3BtmV0cqjjy8qgu6F7LriQT51fAytSM8%2BDQQn3ob2s%2F%2B%2BURErBcZ8McMaic2AjZ65IPUcsf2GJ7uVRNH98GcylQZxlU5BFQD3thpsL5InJUo0LhjtS3XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb5ae76b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/adv/armadaboard/banner1.webm

104.21.12.188

206 Partial Content

167 kB

URL GET HTTP/3
www.gofuckbiz.com/adv/armadaboard/banner1.webm
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
WebM\012- EBML file, creator webmB\20\012- data
Size
167 kB (166949 bytes)
Hash
90805fb5205fc881c87f0bd56e4a299d
df3d0f250ab070cf84ac974be16b6e72a8ce933b
ab16990f01c48abf93dc4724acc9a2b5e56f52f1ef65b3a8bf21ee16dc04bebe

HTTP Headers

GET /adv/armadaboard/banner1.webm HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: video/webm
content-length: 166949
last-modified: Tue, 13 Nov 2018 16:43:19 GMT
etag: "5beaff27-28c25"
cache-control: max-age=3600
cf-cache-status: HIT
age: 4136
content-range: bytes 0-166948/166949
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WjLjRefbgwKKZFtoYuScOEU54n3qKWCq2D06TDEiie3EaOX%2BL%2FVDgf7pJGjrFdtsLRd8LJHBQ04bLZNhfhcPPFt8tfPcaDf76BFwNIHu64k9cHjSkHlDtSxCjKArKaDBWBOnqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb5ce8db4f4-OSL
alt-svc: h3=":443"; ma=86400

telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2

149.154.167.99

200 OK

11 kB

URL GET HTTP/2
telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
149.154.167.99:443
ASN
#62041 Telegram Messenger Inc

Requested by
https://oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small
Certificate
IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Size
11 kB (11028 bytes)
Hash
1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f

HTTP Headers

GET /fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://oauth.telegram.org
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: application/octet-stream
content-length: 11028
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: "63512b7d-2b14"
expires: Sat, 09 Dec 2023 07:36:45 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

www.gofuckbiz.com/images/compro/compro_footbg.gif

104.21.12.188

200 OK

258 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_footbg.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 1 x 33\012- data
Size
258 B (258 bytes)
Hash
ae9c7aeb610c9f5756923ff2adf795d5
8dc29ca48036ad046f89e7d7970f9acde35b88a9
8ea98b9bd7b6c24b2596defae92d3b1ee632f7f11124ec001e509f516acf78de

HTTP Headers

GET /images/compro/compro_footbg.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:46 GMT
content-type: image/gif
content-length: 258
last-modified: Sat, 31 Mar 2007 12:45:39 GMT
etag: "460e57f3-102"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F02EVOlPyGJwU86o9JuDM6%2FFV0CRswBO0M2TTpZkxhSDpLnsWcEgHzvuWtLwWQGKCV9worTmcnpFXlJKqNpGstdZgGm9e0fPXg16NNntRFL%2FgCxVY%2F1WpMPSyjvpPPTMRqy6SA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb908a0b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_footL.gif

104.21.12.188

200 OK

1.2 kB

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_footL.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 61 x 33\012- data
Size
1.2 kB (1240 bytes)
Hash
518a6d603a34fc5b7685aa38ca9acd36
66df1a6c3d3275c35edcab0275b7c7a694d7ae30
a18db55990869a3aaf6ecf61417c42d0656619ced089afb7f5f6c09b73d33146

HTTP Headers

GET /images/compro/compro_footL.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:46 GMT
content-type: image/gif
content-length: 1240
last-modified: Sat, 31 Mar 2007 12:45:41 GMT
etag: "460e57f5-4d8"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xQa%2FB9salUVQa3VRiNbXQuMi5CBKHkDNIlo4SwYC%2BLC5u04lAUJQOh1hc8KP3CvkgaMXNREK4udV38Cr0NucSz34FlNc4PAnvlFyAcH60gzSaPwxZcd3Mpz%2FOE17FFpLeRGjoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb908a1b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_footR.gif

104.21.12.188

200 OK

781 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_footR.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 28 x 33\012- data
Size
781 B (781 bytes)
Hash
e5425bf7c6de6b5c35e2a7288287bcca
cf8cd1ba649b3feea4167ad0b5b8eaa41cd24a39
fb4bf67803b77031e0f95eea63b2e172b54d71feb11844f9f81b6654fe0f6ffb

HTTP Headers

GET /images/compro/compro_footR.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:46 GMT
content-type: image/gif
content-length: 781
last-modified: Sat, 31 Mar 2007 12:45:41 GMT
etag: "460e57f5-30d"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TND8fC7%2FG1YeIPfwMVbpEfKOKQwqmacM23B%2FStVmu6R0%2BGr%2FB0MZyGEgb2lHnfIZcwXaFza1QP9fGvEMEz4V7Ujr7VvIkDrCC63VrEz39FatjJP9jA5ow9WV2W2fFzJNY2b7yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb908a3b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/images/compro/compro_R.gif

104.21.12.188

200 OK

152 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/compro_R.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 40 x 1\012- data
Size
152 B (152 bytes)
Hash
fac523d3cb774451575fc80763b81e86
6e48dd5bdb3fba18abbf965366019e8395055d35
95658d4fd8527e8c04a0ff01836427b4f21817c5e14e1f0f40a7ca8f2b2c3cc1

HTTP Headers

GET /images/compro/compro_R.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:46 GMT
content-type: image/gif
content-length: 152
last-modified: Sat, 31 Mar 2007 12:45:43 GMT
etag: "460e57f7-98"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6W%2BQuCNkgVYp77Uh%2BPLriO%2B26O3fK4ffN4iiXvfzSoD8wxmNltjWzmRMfZBA7zTEY%2F0JF3VLd5fA5rLo0vsyj%2B793gJrXTFh13vAvHThFDgeBODwH2FIqLpvVDnjmRHu2f1l7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb908a4b4f4-OSL
alt-svc: h3=":443"; ma=86400

telegram.org/css/font-roboto.css?1

149.154.167.99

200 OK

6.2 kB

URL GET HTTP/2
telegram.org/css/font-roboto.css?1
IP
149.154.167.99:443
ASN
#62041 Telegram Messenger Inc

Requested by
https://oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small
Certificate
IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT

File type
ASCII text, with very long lines (6354), with no line terminators
Size
6.2 kB (6166 bytes)
Hash
c06318a1f377e388b69b104b4cefa1a6
151f067aae997487880e573876f96b8d598e64db
1a53363e667fffef8a82588191989d36e680b4d341c6b557e62bf207311a3d70

HTTP Headers

GET /css/font-roboto.css?1 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oauth.telegram.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: text/css
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: W/"63512b7d-1816"
expires: Sat, 09 Dec 2023 07:36:45 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

www.gofuckbiz.com/images/compro/misc/menu_open.gif

104.21.12.188

200 OK

82 B

URL GET HTTP/3
www.gofuckbiz.com/images/compro/misc/menu_open.gif
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
GIF image data, version 89a, 11 x 7\012- data
Size
82 B (82 bytes)
Hash
444c1bd41a4aac202cb0c415a0091f85
6719529433aceedb239e61dd5ce9fb03ce31846b
4822c939f8ee36189afd015a0550c97659b2c842e3015075c494879b6cb8754b

HTTP Headers

GET /images/compro/misc/menu_open.gif HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: image/gif
content-length: 82
last-modified: Sat, 31 Mar 2007 12:45:49 GMT
etag: "460e57fd-52"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o8vzJ0NXU5rFs%2BqxrK%2FpBfJTYWs2DHX6eV9SVC%2BxhG%2Bbcl%2Ful8Z%2BcjbH3ecshWe7JaQU%2F0EqsIPQKa974n4XGicWspXcK89pjP53Xar5StKvcWjqA0IIURGvZPMBE%2FhfBpslbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb36c25b4f4-OSL
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/clientscript/vbulletin_important.css?v=386

104.21.12.188

200 OK

1.8 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/vbulletin_important.css?v=386
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (1940), with no line terminators
Size
1.8 kB (1794 bytes)
Hash
f0e5a31200c75e1b515c3a62ce735583
6968cfcf9ada68cef9423b8d364beef6002b8c76
d4c48962eb7aa4ab5d83855569c8503c6c5ee0ec70d70e3c8f7c79276047018f

HTTP Headers

GET /clientscript/vbulletin_important.css?v=386 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: text/css
last-modified: Tue, 03 Mar 2020 10:06:15 GMT
etag: W/"5e5e2c17-702"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sf5ZZwD3ah9U7qljFvxuM2zV8wtOo8yxegAhxJ4RkTQQydJ6xIEsUziVssL1YwIfe20Lg2W63NlA0M3C%2BI0m%2Fz6S%2BXc%2F4PtffGuMQUNZG47VndQOgEX7BBwZJb%2FthWE80px0FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaddee5b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/clientscript/post_thanks.js

104.21.12.188

200 OK

2.4 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/post_thanks.js
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
ASCII text, with very long lines (2516), with no line terminators
Size
2.4 kB (2375 bytes)
Hash
74c26f9aa4009c4ad0777469a50a135b
5748389966725a0b2ec30db41694d67731e59e59
35a8eee21c7e7c2a9ca8c0e95ed05d439ed13e1d466ecb7e2bbc121936298482

HTTP Headers

GET /clientscript/post_thanks.js HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Tue, 19 Aug 2014 10:41:46 GMT
etag: W/"53f329ea-947"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buVVvza6IXOYzT%2BlWC4QJtsaJm4n0w6NLcM2wduIqCTtUIC0VkVTvVMz8Fw%2FOHKCq89hEtaQvpBy%2BhPiF7sgwyvVNHxllvtaTvAIBSufljuw2kq4yvYx2P%2BD%2FEVKPFs2HgUe7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eadff15b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/scripts/count.php?callback=jQuery31103604820166543966_1701761810877&_=1701761810878

104.21.12.188

200 OK

0 B

URL GET HTTP/3
www.gofuckbiz.com/scripts/count.php?callback=jQuery31103604820166543966_1701761810877&_=1701761810878
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /scripts/count.php?callback=jQuery31103604820166543966_1701761810877&_=1701761810878 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:46 GMT
content-type: text/html; charset=windows-1251
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u06i%2FeYbhtEPIGTUbGVQDI3FCunZ1kVf0fvoOiGjkGtpbmhqQZUaJupGchbnCNYDQa9JO4m8x27cMaY7SqEBiaGjQvWIbIC2hSs2T3HAWTh1Is1kjEscNDAgBitXXQKA%2BWECNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830a9eb8181bb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/clientscript/vbulletin_md5.js?v=387

104.21.12.188

200 OK

5.5 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/vbulletin_md5.js?v=387
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
ASCII text, with very long lines (5502), with no line terminators
Size
5.5 kB (5464 bytes)
Hash
0f84c84fc8e789df8b68383604f63dc4
5a2178fcae5acd26b0430e58abf0d6a967486f1a
125c7861c5d5e99476250d56272cb20a68c2aea0f080d3c6f57221ff9c1a9482

HTTP Headers

GET /clientscript/vbulletin_md5.js?v=387 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Wed, 18 Aug 2010 09:55:49 GMT
etag: W/"4c6bae25-1558"
cache-control: max-age=3600
cf-cache-status: HIT
age: 11
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mW0KRi%2Bwcdgabmiffne7DN9h%2FIXpJbRwSwZFLz9rYkwOPXXER4IXJV2V9jyi4joDPmwy%2B3Ak8paNnIrNBvByGbGyoYW2kDKJcU0wGe2kqiQf6zOcdGTO3JbC1WxQ1YtRVwWrSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eae2f54b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/clientscript/vbulletin_global.js?v=387

104.21.12.188

200 OK

26 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/vbulletin_global.js?v=387
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (25316)
Size
26 kB (26027 bytes)
Hash
d3506acdde91cb9db7417d94af111c5e
e09ee43af5a2f402b6f3a5020e3d145452e8f8e6
816e70d4f7c4065de218abbb9dded0063ca48206831d4fdf8148ff3873ae16f6

HTTP Headers

GET /clientscript/vbulletin_global.js?v=387 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Wed, 18 Aug 2010 09:55:49 GMT
etag: W/"4c6bae25-65ab"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ok0S7p7RzgAwqy0ujSyZQqRWOhxWfp180AxvJWi75ILSMdg5Fimwvmj0miF6MgCToJRFZKriXCLT4TzM17WBhK6bMNmwowd1I2ZQXaliAHw5tu0Ocha8CxoIv%2BGK3XMRiyC3bQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eadff0bb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

telegram.org/js/widget-frame.js?62

149.154.167.99

200 OK

94 kB

URL GET HTTP/2
telegram.org/js/widget-frame.js?62
IP
149.154.167.99:443
ASN
#62041 Telegram Messenger Inc

Requested by
https://oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small
Certificate
IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT

File type

Size
94 kB (93974 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/widget-frame.js?62 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oauth.telegram.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: application/javascript
last-modified: Thu, 20 Apr 2023 18:46:51 GMT
etag: W/"6441889b-16f16"
expires: Sat, 09 Dec 2023 07:36:45 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

www.gofuckbiz.com/showthread.php?t=58807

104.21.12.188

200 OK

108 kB

URL User Request GET HTTP/2
www.gofuckbiz.com/showthread.php?t=58807
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1558), with CRLF, LF line terminators
Size
108 kB (107738 bytes)
Hash
d89ca117a3712c7c4b9d446bb3c630ef
d1cb763cccc4512165920216c804fe69545185c9
998bc6d9beec29247e5ddfb47011b985d5a02ceafd990f1da6446d3a445fafe3

HTTP Headers

GET /showthread.php?t=58807 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmilfswat.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: text/html; charset=windows-1251
set-cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; path=/
bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; path=/; domain=.gofuckbiz.com; HttpOnly
bblastvisit=1701761803; expires=Wed, 04-Dec-2024 07:36:43 GMT; path=/; domain=.gofuckbiz.com; secure
bblastactivity=0; expires=Wed, 04-Dec-2024 07:36:43 GMT; path=/; domain=.gofuckbiz.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: private
pragma: private
cross-origin-opener-policy: same-origin
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=7
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DlF%2BPhsyS2C7u%2FwmsSB4eoL5u6D12sj9hdGhql0cysbc8TR7eKBS8ZhLCvdlqcOEzfscHJgxKIvTmihH617aPgtp1szQjhaajsBwA7SsELA3%2FzMCintgT%2BeOGLeUxa7M2jE3bQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830a9ea9ef45b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.gofuckbiz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.21.12.188

200 OK

1.2 kB

URL GET HTTP/3
www.gofuckbiz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 16:06:21 GMT
etag: W/"65660ffd-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ouiHJVxlFmlgvmNf5resTNmnTBrBWFRz9alNX3G%2Fqq9bGv69AXyE1USB1Yiqb5Sr%2F03e%2B2ZYSsN%2FoAiDS6PCu8FRobd0cijOPRJCB6Y1lm68A%2BRZ3b5nN4Z2fJgsQaQzwlu0og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb38c7cb4f4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 07 Dec 2023 07:36:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip

www.gofuckbiz.com/clientscript/vbulletin_menu.js?v=387

104.21.12.188

200 OK

9.4 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/vbulletin_menu.js?v=387
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (9616), with no line terminators
Size
9.4 kB (9440 bytes)
Hash
d4439836c3f7351351183be785b400b3
ea7776429f7d71c5ba5da470aa7479c940ca9690
43cc533c4ae3ff8fe476175718f7501533d951fd3561d813821e75bffc27ebda

HTTP Headers

GET /clientscript/vbulletin_menu.js?v=387 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Wed, 18 Aug 2010 09:55:49 GMT
etag: W/"4c6bae25-24e0"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jZM0Mtmwf7wE5mSlVNQvyaBhm9Au29XCFMBHBp39%2BDgAPxNzJMBb1Lfve2%2FhZmNLTyWyUUvzHpH6a7Zt9WziRUCE09%2BweNpvgqyIb5WoffZwlUM8sf9CnzN0JT74IQ0u72DQ8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eadff12b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/clientscript/yui/connection/connection-min.js?v=387

104.21.12.188

200 OK

12 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/yui/connection/connection-min.js?v=387
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
ASCII text, with very long lines (6004)
Size
12 kB (11604 bytes)
Hash
ed935da9668b7350505daa30027a6f44
10ebcea9a5b9a89ad271c462fdafb5d012b9af64
a0297b3ea37cda46af5a08ed89b1563987e6f6a233286e1a373668776134841c

HTTP Headers

GET /clientscript/yui/connection/connection-min.js?v=387 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Wed, 18 Aug 2010 09:55:49 GMT
etag: W/"4c6bae25-2d54"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ojOnFGBPW8VRJh6qqx3uF%2BcWcWRhlL6U2ogznynrRRMih5edQ5V5KxeC4Rb%2FxiXlU5SKzDclLqZFdmlCi%2BwHu5j693rPwqMNIO7TQDOGy7znEgkRlEN2Ba5mhmp3D7qYVyBRiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eadeef8b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/clientscript/yui/yahoo-dom-event/yahoo-dom-event.js?v=387

104.21.12.188

200 OK

37 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/yui/yahoo-dom-event/yahoo-dom-event.js?v=387
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
ASCII text, with very long lines (11752)
Size
37 kB (36628 bytes)
Hash
f16dcd51fd1d51fac21a9724911184c4
5549ff428576843dcbb70b9986e77dfbec09853a
d40743d2f62e70a29644f823731551ac1f13903f07f8e0756aa664bb684f276c

HTTP Headers

GET /clientscript/yui/yahoo-dom-event/yahoo-dom-event.js?v=387 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Wed, 18 Aug 2010 09:55:49 GMT
etag: W/"4c6bae25-8f14"
cache-control: max-age=3600
cf-cache-status: HIT
age: 585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FHoaZzL1tvJGQgNzU5q9rb%2FcmZ4w4DE55ZbEg45C%2BSRTValeh0NgwIICF8JBzjJ65jKQKUx5O8bB%2BCCBgkQc1buZ0GiM0WttNKA2Ar%2F2Mf5veuNFoB0cxv%2BAIJWjd%2Bj4TxFdEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eadeef2b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/clientscript/vbulletin_post_loader.js?v=387

104.21.12.188

200 OK

2.0 kB

URL GET HTTP/3
www.gofuckbiz.com/clientscript/vbulletin_post_loader.js?v=387
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (2095), with no line terminators
Size
2.0 kB (2037 bytes)
Hash
0b9b1cafdb1102fc355c26d30c89ea0d
cef207ed93dab3146b635be3c4000c1f6460f77e
8bea0418249413ee09d9dab53d067d3a5de206734641b9aff9be5ef100545fdc

HTTP Headers

GET /clientscript/vbulletin_post_loader.js?v=387 HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Wed, 18 Aug 2010 09:55:49 GMT
etag: W/"4c6bae25-7f5"
cache-control: max-age=3600
cf-cache-status: HIT
age: 584
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bKQPGK4Wzy75QPT2en8MBdmKdEHm0UjtIr%2FCQIntsW1zNxVQhaThWolS5ha75ZdQFgBQFeTiDAZgHhiUa8k2SO5tQWc9ogek142vAfWJ73AMwND38MtIdKlhZCh5MBfXNc1ztA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eadff1ab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gofuckbiz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.21.12.188

200 OK

1.2 kB

URL GET HTTP/3
www.gofuckbiz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:44 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 16:06:21 GMT
etag: W/"65660ffd-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D9VHcRjh69MTFW%2FNlXpcvS%2FG6ymCZ5UD5ETI1Esg1uXwVWcrBYTZHg3ZBe4g72Zn%2BsaQSDK4OfnTOdtC%2BwyfCVZFH0un2tOjmYjOwngGRRIpkWAvtQrm37ASBgU9U4C0Dx2VZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eaebff5b4f4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 07 Dec 2023 07:36:44 GMT
cache-control: max-age=172800, public
content-encoding: gzip

telegram.org/css/widget-frame.css?66

149.154.167.99

200 OK

83 kB

URL GET HTTP/2
telegram.org/css/widget-frame.css?66
IP
149.154.167.99:443
ASN
#62041 Telegram Messenger Inc

Requested by
https://oauth.telegram.org/embed/gofukbizBot?origin=https%3A%2F%2Fwww.gofuckbiz.com&return_to=https%3A%2F%2Fwww.gofuckbiz.com%2Fshowthread.php%3Ft%3D58807&size=small
Certificate
IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT

File type
ASCII text, with very long lines (1653)
Size
83 kB (83306 bytes)
Hash
f80deb4a4fc00fa54cf4a1617ffaad1e
52f5528aa59e0ad22c5103318a86a4c421d45b34
d61214fdf1c1eee41b83cb56d52b82db20a47bfeab5248bb6fda7a4f0744eedf

HTTP Headers

GET /css/widget-frame.css?66 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oauth.telegram.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 05 Dec 2023 07:36:45 GMT
content-type: text/css
last-modified: Sat, 01 Apr 2023 17:42:21 GMT
etag: W/"64286cfd-1456a"
expires: Sat, 09 Dec 2023 07:36:45 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

www.gofuckbiz.com/favicon.ico

104.21.12.188

200 OK

1.3 kB

URL GET HTTP/3
www.gofuckbiz.com/favicon.ico
IP
104.21.12.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gofuckbiz.com/showthread.php?t=58807
Certificate
IssuerGoogle Trust Services LLC
Subjectgofuckbiz.com
FingerprintD4:3B:9A:0C:0F:DC:3E:07:EF:99:93:8E:BD:C3:C8:AC:4A:67:B4:AF
ValiditySat, 02 Dec 2023 13:31:16 GMT - Fri, 01 Mar 2024 13:31:15 GMT

File type
MS Windows icon resource - 1 icon, 20x20\012- data
Size
1.3 kB (1342 bytes)
Hash
f07ba96fb156cd05b93c3579abf8c4dc
efe95fc1ed0d0300cfdef3a097a0f851fd535a14
0ffa796a05dab6524df6e4cdd802500c075abbd2b5050558d5b86abb96e7b244

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.gofuckbiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gofuckbiz.com/showthread.php?t=58807
Cookie: PHPSESSID=s7oafvbvn7evi7m0dhtttkfu86; bbsessionhash=96ba7ad1f0978f3dcf5d1742d0201e0f; bblastvisit=1701761803; bblastactivity=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:36:46 GMT
content-type: image/x-icon
last-modified: Wed, 18 Aug 2010 11:46:03 GMT
etag: W/"4c6bc7fb-53e"
cache-control: max-age=3600
cf-cache-status: HIT
age: 283
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X0IvbjU92X9cDc%2FTAwfR8PYn7dGTr%2BFBNhnM5Qkr4wzJe9AHFHTFW1CAzvLzEKa%2FBoJzmpWeoNld6GLTy7oymK%2FQb5BBr0CMgr8RAQt77VhNRzVwWFAZKAGroXL1xE1yGLVhkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830a9eb938c9b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by