Report - 1919.rpnetworks.xyz/adult_video_3/1328/2da4af00d834dfbd23fda189a58e00c9/?sub2=1386749&click

Report Overview

Visited public
2024-12-13 01:26:47
Tags
URL
1919.rpnetworks.xyz/adult_video_3/1328/2da4af00d834dfbd23fda189a58e00c9/?sub2=1386749&click_id=wdkqmuqp62c64196j466sc0g&sub1=a586357
Finishing URL
604aae98f6.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7e03fb55-1eae-464d-9a75-c1f40e13112e
IP / ASN
192.133.142.177
#15317 SERVEREL-AS
Title

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
0f92a3fc9f.news-bmacazo.cc	unknown	unknown	No data	No data	2.1 kB	76 kB	193.108.118.16
022f367764.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	84 kB	193.108.118.16
a1b6801028.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	3.3 kB	170 kB	193.108.118.16
8d22420a81.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	151 kB	193.108.118.16
adc47ee5fd.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	77 kB	193.108.118.16
b2916202ef.news-bmacazo.cc	unknown	unknown	No data	No data	1.6 kB	23 kB	193.108.118.16
1446adc067.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	61 kB	193.108.118.16
19b9b1fd8b.news-bmacazo.cc	unknown	unknown	No data	No data	5.5 kB	121 kB	193.108.118.16
2a63a1dec3.news-bmacazo.cc	unknown	unknown	No data	No data	516 B	36 kB	193.108.118.16
dcea12d945.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	118 kB	193.108.118.16
02178568cc.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	73 kB	193.108.118.16
693974c18d.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	616 B	20 kB	193.108.118.16
news-xxokeji.com	unknown	unknown	2024-12-08	2024-12-08	535 B	263 B	193.108.117.211
b6a33a496b.news-bmacazo.cc	unknown	unknown	No data	No data	516 B	36 kB	193.108.118.16
39e5683dae.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	55 kB	193.108.118.16
8b5ee6daed.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	516 B	36 kB	193.108.118.16
db9b2656d1.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.2 kB	81 kB	193.108.118.16
c2fe4209e5.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	21 kB	193.108.118.16
8ee7102174.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	61 kB	193.108.118.16
07f099bd01.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	5.5 kB	98 kB	193.108.118.16
5df3513a20.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.1 kB	67 kB	193.108.118.16
57c804098c.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	84 kB	193.108.118.16
5c928be9ad.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	59 kB	193.108.118.16
467e192812.news-bwitobu.today	unknown	2024-12-04	2024-12-13	2024-12-13	1.1 kB	118 kB	144.76.106.61
f1998b0816.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	3.9 kB	68 kB	193.108.118.16
da10ca2533.news-bmacazo.cc	unknown	unknown	No data	No data	616 B	40 kB	193.108.118.16
ea8bb36853.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	59 kB	193.108.118.16
fdba5d111b.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.2 kB	72 kB	193.108.118.16
87dfd02eaf.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	516 B	36 kB	193.108.118.16
267e176f18.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	45 kB	193.108.118.16
31f94fb15e.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	516 B	36 kB	193.108.118.16
dbc57de1b2.news-bmacazo.cc	unknown	unknown	No data	No data	616 B	19 kB	193.108.118.16
5621921125.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	616 B	40 kB	193.108.118.16
0fe3af2d1f.news-bmacazo.cc	unknown	unknown	No data	No data	5.0 kB	142 kB	193.108.118.16
8b09198067.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	2.2 kB	113 kB	193.108.118.16
92933f8b0c.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	3.9 kB	95 kB	193.108.118.16
ec14ba04d8.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	42 kB	193.108.118.16
adbf10a08f.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	91 kB	193.108.118.16
76684baea1.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	71 kB	193.108.118.16
6cd55d1bc5.news-bmacazo.cc	unknown	unknown	No data	No data	616 B	62 kB	193.108.118.16
e4447de45d.news-bmacazo.cc	unknown	unknown	No data	No data	2.8 kB	66 kB	193.108.118.16
16ad280b73.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.6 kB	58 kB	193.108.118.16
85a9a771c1.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	62 kB	193.108.118.16
f2ee15e679.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	84 kB	193.108.118.16
0887f74b80.news-bmacazo.cc	unknown	unknown	No data	No data	616 B	18 kB	193.108.118.16
14fd7d4c1e.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	72 kB	193.108.118.16
9631cdd1c3.news-bmacazo.cc	unknown	unknown	No data	No data	616 B	63 kB	193.108.118.16
d8a390ada2.news-bmacazo.cc	unknown	unknown	No data	No data	1.0 kB	39 kB	193.108.118.16
103a07140d.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	80 kB	193.108.118.16
news-xpatado.com	unknown	2024-10-15	2024-11-05	2024-12-08	42 kB	20 kB	23.158.56.201
1edba1a0f7.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	44 kB	193.108.118.16
1b9a215c67.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	2.8 kB	74 kB	193.108.118.16
47f908ca4d.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	69 kB	193.108.118.16
050aaec67f.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	98 kB	193.108.118.16
89c64acc41.news-bmacazo.cc	unknown	unknown	No data	No data	516 B	36 kB	193.108.118.16
88bf0aa1b7.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	97 kB	193.108.118.16
a1c7605839.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	4.3 kB	193.108.118.16
bbbb01009d.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	523 B	1.4 kB	193.108.118.16
aba084f35f.news-bmacazo.cc	unknown	unknown	No data	No data	2.2 kB	97 kB	193.108.118.16
7094dcf5ad.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	87 kB	193.108.118.16
4192712105.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	72 kB	193.108.118.16
0e4fbc2ab5.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.1 kB	56 kB	193.108.118.16
6eb6ba36f2.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	143 kB	193.108.118.16
f042b82a52.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	516 B	36 kB	193.108.118.16
530c74e7f6.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	616 B	54 kB	193.108.118.16
d323b1d989.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	64 kB	193.108.118.16
28d497061d.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	3.3 kB	101 kB	193.108.118.16
1bdffb8267.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	76 kB	193.108.118.16
3c44c93776.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	2.3 kB	45 kB	193.108.118.16
c6fb39fc7d.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	81 kB	193.108.118.16
5579305716.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.2 kB	57 kB	193.108.118.16
2d08ef3fed.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.1 kB	44 kB	193.108.118.16
9d1c875eb1.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	89 kB	193.108.118.16
a32fc268a0.news-bmacazo.cc	unknown	unknown	No data	No data	1.1 kB	62 kB	193.108.118.16
bb57d10ab5.news-bmacazo.cc	unknown	unknown	No data	No data	616 B	26 kB	193.108.118.16
387324c44f.news-bmacazo.cc	unknown	unknown	No data	No data	523 B	1.4 kB	193.108.118.16
2b3fcba93d.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.2 kB	81 kB	193.108.118.16
3677a2834c.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.2 kB	80 kB	193.108.118.16
4973ca1af7.news-bmacazo.cc	unknown	unknown	No data	No data	3.9 kB	88 kB	193.108.118.16
e4f152f201.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	2.3 kB	51 kB	193.108.118.16
e12b75073d.news-bmacazo.cc	unknown	unknown	No data	No data	3.9 kB	61 kB	193.108.118.16
partners-tds.com	415339	2021-04-01	2021-04-01	2024-12-08	36 kB	34 kB	142.202.51.61
1a7be77b67.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	62 kB	193.108.118.16
6f0b1c26d1.news-bmacazo.cc	unknown	unknown	No data	No data	4.5 kB	92 kB	193.108.118.16
fa03b9c1bb.news-bmacazo.cc	unknown	unknown	No data	No data	1.2 kB	59 kB	193.108.118.16
22e1ef2cb3.news-bmacazo.cc	unknown	unknown	No data	No data	1.7 kB	59 kB	193.108.118.16
b1bb8b217a.news-bmacazo.cc	unknown	2024-12-10	2024-12-13	2024-12-13	1.7 kB	95 kB	193.108.118.16

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-12-13 01:26:19	medium	192.133.142.177	Client IP	ET HUNTING Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	5621921125.news-bmacazo.cc/revopush_v2.js	110 kB	2024-12-12 14:10	2024-12-26 05:18
Pretty URL 5621921125.news-bmacazo.cc/revopush_v2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 14:10 Last Seen2024-12-26 05:18 Times Seen134 Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 Loading...

HTTP Transactions (368)

	URL	IP	Response	Size
	news-xxokeji.com/tds?id=1276457389&p1=1328	193.108.117.211	302 Found	0 B
URL news-xxokeji.com/tds?id=1276457389&p1=1328 IP 193.108.117.211:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1276457389&p1=1328 HTTP/1.1 Host: news-xxokeji.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1919.rpnetworks.xyz/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:21 GMT content-length: 0 location: https://467e192812.news-bwitobu.today/?id=1276457389&p1=1328&traceId=262d7ec9-173c-48a5-b867-69afd88fb916 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	467e192812.news-bwitobu.today/revopush_v2.js	144.76.106.61	200 OK	36 kB
URL 467e192812.news-bwitobu.today/revopush_v2.js IP 144.76.106.61:0 ASN #24940 Hetzner Online GmbH File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 467e192812.news-bwitobu.today User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://467e192812.news-bwitobu.today/?id=1276457389&p1=1328&traceId=262d7ec9-173c-48a5-b867-69afd88fb916 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:21 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://467e192812.news-bwitobu.today/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:21 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:21 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcl9r; expires=Mon, 13 Jan 2025 01:26:21 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:42 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://467e192812.news-bwitobu.today/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:21 GMT content-length: 0 location: https://adc47ee5fd.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	adc47ee5fd.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL adc47ee5fd.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: adc47ee5fd.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://adc47ee5fd.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://adc47ee5fd.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcl9r; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:22 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:22 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcla2; expires=Mon, 13 Jan 2025 01:26:22 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:44 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://adc47ee5fd.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-length: 0 location: https://050aaec67f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=eae42a29-e0be-4804-ac4b-153e1d6bf215 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	050aaec67f.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 050aaec67f.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 050aaec67f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://050aaec67f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=eae42a29-e0be-4804-ac4b-153e1d6bf215 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	adc47ee5fd.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6	193.108.118.16	200 OK	18 kB
URL adc47ee5fd.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash c3ebecfed461ce2001924a65bc16e1eb 9d020ed98778767f22fdecb384ada86b5a471b8d b63c0741ac2f73b77a05a637812a531527a9700106093bb1b4f966ceb52e32f6 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6 HTTP/1.1 Host: adc47ee5fd.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://adc47ee5fd.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://050aaec67f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-length: 0 location: https://89c64acc41.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0d6af97-7f92-4e93-899d-393568858189 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	89c64acc41.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 89c64acc41.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 89c64acc41.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://89c64acc41.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0d6af97-7f92-4e93-899d-393568858189 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://89c64acc41.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclae; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:22 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:22 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclak; expires=Mon, 13 Jan 2025 01:26:22 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:44 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://89c64acc41.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-length: 0 location: https://b6a33a496b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea0b4317-3f89-4843-943e-6ed669e8a373 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	b6a33a496b.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL b6a33a496b.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: b6a33a496b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b6a33a496b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea0b4317-3f89-4843-943e-6ed669e8a373 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b6a33a496b.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclak; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:23 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:23 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclan; expires=Mon, 13 Jan 2025 01:26:23 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:46 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://b6a33a496b.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-length: 0 location: https://d323b1d989.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	d323b1d989.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL d323b1d989.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: d323b1d989.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d323b1d989.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	d323b1d989.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac	193.108.118.16	200 OK	3.9 kB
URL d323b1d989.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (5972) Size 3.9 kB (3856 bytes) Hash 718585433461e625defd20e17e306d5a 1af08785b6cb045a53c7f6a1c91917fe30d6a177 cc0ee3e839537734d5ba8d1c8ec380225b86190913f78425c997647dc9456634 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac HTTP/1.1 Host: d323b1d989.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://b6a33a496b.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d323b1d989.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclan; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:23 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:23 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclat; expires=Mon, 13 Jan 2025 01:26:23 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:46 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://d323b1d989.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-length: 0 location: https://b2916202ef.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=56221df4-a2de-46b6-a8df-3ac3ec8dc209 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	050aaec67f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=eae42a29-e0be-4804-ac4b-153e1d6bf215	193.108.118.16	200 OK	62 kB
URL 050aaec67f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=eae42a29-e0be-4804-ac4b-153e1d6bf215 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (54568) Size 62 kB (62250 bytes) Hash c62d79c4dfc1e4246f35bea2e39db8db 50ea882481d206ebcdcd62bdb5a231dd6db92298 020249f2937d66a6249a04e91bb347706426be1a7c97eb4679277fdaf7471847 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=eae42a29-e0be-4804-ac4b-153e1d6bf215 HTTP/1.1 Host: 050aaec67f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://adc47ee5fd.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	b2916202ef.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL b2916202ef.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: b2916202ef.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b2916202ef.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=56221df4-a2de-46b6-a8df-3ac3ec8dc209 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	d323b1d989.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac	193.108.118.16	200 OK	23 kB
URL d323b1d989.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 23 kB (22989 bytes) Hash 964ba4457ab48c9be7c49e6a4aee0b59 c3f1a08e0965301261773b3951e51ad0a4ebee6f 2a08ab62836b2bc5c9a762fcf0f29027ce175ae67d93786889b5d7f6768c5bc5 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac HTTP/1.1 Host: d323b1d989.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d323b1d989.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=595c27a5-b1e1-46f1-828b-15fbafa1baac Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	b2916202ef.news-bmacazo.cc/lands/39/img/icon3.png	193.108.118.16	200 OK	7.8 kB
URL b2916202ef.news-bmacazo.cc/lands/39/img/icon3.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.8 kB (7847 bytes) Hash 8f3cc830da0b1fdf66bda7d1d734747b 94588f041eec3a78a8780c8124c56a1434a89277 ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba HTTP Headers GET /lands/39/img/icon3.png HTTP/1.1 Host: b2916202ef.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b2916202ef.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=56221df4-a2de-46b6-a8df-3ac3ec8dc209 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: image/png content-length: 7847 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1ea7" accept-ranges: bytes X-Firefox-Spdy: h2`

	b2916202ef.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL b2916202ef.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: b2916202ef.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b2916202ef.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=56221df4-a2de-46b6-a8df-3ac3ec8dc209 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b2916202ef.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclat; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:23 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:23 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclb0; expires=Mon, 13 Jan 2025 01:26:23 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:46 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://b2916202ef.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-length: 0 location: https://1a7be77b67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	1a7be77b67.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 1a7be77b67.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 1a7be77b67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1a7be77b67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	1a7be77b67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5	193.108.118.16	200 OK	6.4 kB
URL 1a7be77b67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (7564) Size 6.4 kB (6423 bytes) Hash 352021535376fb8d6dc7ebc1af3a7823 d897edeca1bb25cb7139c4a376474dd8c5769b87 50a69ee023942575066ae3c3a2313b821cd241a08d8a452339697a511413f821 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5 HTTP/1.1 Host: 1a7be77b67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://b2916202ef.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1a7be77b67.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-length: 0 location: https://aba084f35f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	aba084f35f.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL aba084f35f.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: aba084f35f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://aba084f35f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	aba084f35f.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL aba084f35f.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: aba084f35f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://aba084f35f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://aba084f35f.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclb2; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:24 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:24 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclb9; expires=Mon, 13 Jan 2025 01:26:24 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:48 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://aba084f35f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-length: 0 location: https://8ee7102174.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	8ee7102174.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 8ee7102174.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 8ee7102174.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8ee7102174.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	aba084f35f.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f	193.108.118.16	200 OK	21 kB
URL aba084f35f.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 21 kB (20795 bytes) Hash 0a9f70f028783c5df467532607563712 3b8ed5705399d67d23794fe35118004db85ce891 b7f6c40932841bcde55e9ebb8d57d578a14a4a047e89506e845152ea74dad71c HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f HTTP/1.1 Host: aba084f35f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://aba084f35f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8ee7102174.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclb9; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:24 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:24 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclbe; expires=Mon, 13 Jan 2025 01:26:24 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:48 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://8ee7102174.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-length: 0 location: https://16ad280b73.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c6564ee7-a190-4230-b907-f7bfbc9e134b vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	16ad280b73.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 16ad280b73.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 16ad280b73.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://16ad280b73.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c6564ee7-a190-4230-b907-f7bfbc9e134b Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	16ad280b73.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL 16ad280b73.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: 16ad280b73.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://16ad280b73.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c6564ee7-a190-4230-b907-f7bfbc9e134b Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	1a7be77b67.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5	193.108.118.16	200 OK	18 kB
URL 1a7be77b67.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18415 bytes) Hash f0ae4d14d60f68a3e0cb5eeb970f3591 e7a73a627759dc7367fc51c4cf7b91a98d555528 b36dbeb4602855aafde757ba15dd985bd9c6ffc414dcad69ab2b33959ce56238 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5 HTTP/1.1 Host: 1a7be77b67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1a7be77b67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2cbcc9a5-dda7-4b70-b01d-728641bf2bc5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://16ad280b73.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-length: 0 location: https://5579305716.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	aba084f35f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f	193.108.118.16	200 OK	37 kB
URL aba084f35f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63585) Size 37 kB (37225 bytes) Hash 7a5ee9e9813ec0ab4c2f88d538424e0e 27d41abc8272ca6125560dd7ef84f00cd4940e41 7ab69d81816d2be55ab77b0ea4d65c72bf713795fb10d2e329b6f86d5ac83e39 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=38d6f7a2-5b5b-458e-baed-cfa61b56d43f HTTP/1.1 Host: aba084f35f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1a7be77b67.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:23 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	16ad280b73.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c6564ee7-a190-4230-b907-f7bfbc9e134b	193.108.118.16	200 OK	18 kB
URL 16ad280b73.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c6564ee7-a190-4230-b907-f7bfbc9e134b IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash 5e8489f718af42d9efcb706d8db11b51 e3392a7330557f8cf55275d49b0987b12efe941f 6b92e5cb08627d52def6b32d1a6e8a6af679d3aeb5a1f39dbf498450819c5a88 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c6564ee7-a190-4230-b907-f7bfbc9e134b HTTP/1.1 Host: 16ad280b73.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://16ad280b73.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c6564ee7-a190-4230-b907-f7bfbc9e134b Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://5579305716.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-length: 0 location: https://85a9a771c1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	85a9a771c1.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 85a9a771c1.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 85a9a771c1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://85a9a771c1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	85a9a771c1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d	193.108.118.16	200 OK	18 kB
URL 85a9a771c1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash 671d160025be0a50d04ed90e191e586a 96abdca204ec7c443aafa577ccc6635892dd2c44 c483304c8e279bcc82d6b0a4caeff75de6a13c9c604a71aa9637aea92691ec9f HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d HTTP/1.1 Host: 85a9a771c1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://85a9a771c1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://85a9a771c1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-length: 0 location: https://4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	4973ca1af7.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 4973ca1af7.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 4973ca1af7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	5579305716.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1	193.108.118.16	200 OK	26 kB
URL 5579305716.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 26 kB (25667 bytes) Hash 7db319a9da0e8c7618172841fb11de99 0c7e2fc047cec0de6d7275b7cd55c5889d09896f ab742f3d149c9aad9dec1b7b02cfe4c91db76d22e9fc4330e6ade3027518e4e8 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1 HTTP/1.1 Host: 5579305716.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://5579305716.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	5579305716.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1	193.108.118.16	200 OK	31 kB
URL 5579305716.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 31 kB (30675 bytes) Hash 175c0776c2e8b99119fbabe700905ba7 2ce275673c5c286262733740e15d8a68957ba1cb d2fc3516c3dfd715756b0fb48054b6b15aee5522a4dd16b37367a384574e4bdb HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=d01d2509-4eed-4a3c-a78e-98eae7ce7ba1 HTTP/1.1 Host: 5579305716.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://16ad280b73.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	4973ca1af7.news-bmacazo.cc/lands/39/img/icon3.png	193.108.118.16	200 OK	7.8 kB
URL 4973ca1af7.news-bmacazo.cc/lands/39/img/icon3.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.8 kB (7847 bytes) Hash 8f3cc830da0b1fdf66bda7d1d734747b 94588f041eec3a78a8780c8124c56a1434a89277 ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba HTTP Headers GET /lands/39/img/icon3.png HTTP/1.1 Host: 4973ca1af7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 7847 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1ea7" accept-ranges: bytes X-Firefox-Spdy: h2`

	4973ca1af7.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL 4973ca1af7.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: 4973ca1af7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	4973ca1af7.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL 4973ca1af7.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: 4973ca1af7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	4973ca1af7.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL 4973ca1af7.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: 4973ca1af7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	4973ca1af7.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL 4973ca1af7.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: 4973ca1af7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4973ca1af7.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclbq; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:25 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:25 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclbv; expires=Mon, 13 Jan 2025 01:26:25 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:50 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://4973ca1af7.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-length: 0 location: https://92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710	193.108.118.16	200 OK	37 kB
URL 92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63844) Size 37 kB (37413 bytes) Hash 34fdc0684a0f2e8f4ba3600b8908472a f10abe792c09e184aa58d6a286fea59e380d41c6 d485bf2e831f970be8933c10ed161cb7198a85b4c111489df9d0ed4a3e93ac88 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 HTTP/1.1 Host: 92933f8b0c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://4973ca1af7.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	92933f8b0c.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL 92933f8b0c.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: 92933f8b0c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe	193.108.118.16	200 OK	25 kB
URL 4973ca1af7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 25 kB (24653 bytes) Hash c70b3957c06ca21028b8957ed30813ec d19dae3cd47bd2d19566f99767c2003dd7e9da4a b20ae758b2435b47d5e77392505bfec96b638434a76c46aa4cb9696f548c6fb0 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=6050d24b-69ea-496c-8fbb-acd4eea1eabe HTTP/1.1 Host: 4973ca1af7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://85a9a771c1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	92933f8b0c.news-bmacazo.cc/lands/39/img/icon3.png	193.108.118.16	200 OK	7.8 kB
URL 92933f8b0c.news-bmacazo.cc/lands/39/img/icon3.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.8 kB (7847 bytes) Hash 8f3cc830da0b1fdf66bda7d1d734747b 94588f041eec3a78a8780c8124c56a1434a89277 ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba HTTP Headers GET /lands/39/img/icon3.png HTTP/1.1 Host: 92933f8b0c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 7847 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1ea7" accept-ranges: bytes X-Firefox-Spdy: h2`

	92933f8b0c.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL 92933f8b0c.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: 92933f8b0c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	92933f8b0c.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL 92933f8b0c.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: 92933f8b0c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	85a9a771c1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d	193.108.118.16	200 OK	7.3 kB
URL 85a9a771c1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 7.3 kB (7255 bytes) Hash 8e25029b5c5a13449e765dac4d4fe8ce ca66fa36e58455bf15d6c07dc5005dfb33101eee e4eb7773b13ee2ed8a50f1aa774e9ece3396e68da250913a96131b24360cc94f HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=e1ac3754-13d9-47ec-a4b0-3b88466d154d HTTP/1.1 Host: 85a9a771c1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://5579305716.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	92933f8b0c.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL 92933f8b0c.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: 92933f8b0c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://92933f8b0c.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclbv; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:25 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:25 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclc6; expires=Mon, 13 Jan 2025 01:26:25 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:50 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://92933f8b0c.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-length: 0 location: https://28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	28d497061d.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 28d497061d.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 28d497061d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	28d497061d.news-bmacazo.cc/lands/61/css/style.css	193.108.118.16	200 OK	1.6 kB
URL 28d497061d.news-bmacazo.cc/lands/61/css/style.css IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type ASCII text, with very long lines (6517), with no line terminators Size 1.6 kB (1602 bytes) Hash 100cee95b3c98fb1cf68040edd24e2a1 838847841beaf376403a44c6528aa66ed54f2bb6 6c174c172836cb2ebc57c3ede42ad28c92d52a3d5bc60925c44d99b48efa0d8e HTTP Headers GET /lands/61/css/style.css HTTP/1.1 Host: 28d497061d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: text/css content-length: 1602 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-642" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	28d497061d.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL 28d497061d.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: 28d497061d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://28d497061d.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclc6; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:25 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:25 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclc9; expires=Mon, 13 Jan 2025 01:26:25 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:50 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://28d497061d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-length: 0 location: https://4192712105.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=527977ef-4e3d-44f4-842e-ba1c44e3874e vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	4192712105.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 4192712105.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 4192712105.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4192712105.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=527977ef-4e3d-44f4-842e-ba1c44e3874e Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4192712105.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclc9; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:26 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:26 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclcd; expires=Mon, 13 Jan 2025 01:26:26 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:52 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://4192712105.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-length: 0 location: https://1446adc067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d89131f1-35ff-4668-9d65-4813e61d1a50 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	1446adc067.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 1446adc067.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 1446adc067.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1446adc067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d89131f1-35ff-4668-9d65-4813e61d1a50 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	1446adc067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d89131f1-35ff-4668-9d65-4813e61d1a50	193.108.118.16	200 OK	25 kB
URL 1446adc067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d89131f1-35ff-4668-9d65-4813e61d1a50 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (54568) Size 25 kB (24838 bytes) Hash 017c4188035bfee0b25a195fb0574439 61e69e2cd184fd57ea61523453ddae43fc37d3e8 4be20ce334368d2782375d092084209fc924f0c7a805cb6d3497787250cbef9e HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=d89131f1-35ff-4668-9d65-4813e61d1a50 HTTP/1.1 Host: 1446adc067.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://4192712105.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	4192712105.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=527977ef-4e3d-44f4-842e-ba1c44e3874e	193.108.118.16	200 OK	36 kB
URL 4192712105.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=527977ef-4e3d-44f4-842e-ba1c44e3874e IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (36552) Size 36 kB (35757 bytes) Hash 45a5c16fc5f921e2f1c5db8fa9182dbb 98b5a1b6f91cabd64be067c54ab8835e7bffcbca c0a35969e9278b4ec91fcc6446b3bf1e83a4203a0a21f6e5190977a6b7aa00de HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=527977ef-4e3d-44f4-842e-ba1c44e3874e HTTP/1.1 Host: 4192712105.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://28d497061d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	2b3fcba93d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5bcb3cd5-9799-44b0-8f04-441ef2e1d768	193.108.118.16	200 OK	62 kB
URL 2b3fcba93d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5bcb3cd5-9799-44b0-8f04-441ef2e1d768 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 62 kB (61841 bytes) Hash bd2c8fd4045ec2958c0466ef721d47b0 0c7a86bb9c9bd519dc0f68f4e892fded9ecae647 e2d22a14785f072a178d73e7e37a2a1dedc944314b97cb39a031292ae92bdec8 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=5bcb3cd5-9799-44b0-8f04-441ef2e1d768 HTTP/1.1 Host: 2b3fcba93d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1446adc067.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://2b3fcba93d.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclci; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:26 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:26 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclcp; expires=Mon, 13 Jan 2025 01:26:26 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:52 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	2b3fcba93d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=5bcb3cd5-9799-44b0-8f04-441ef2e1d768	193.108.118.16	200 OK	18 kB
URL 2b3fcba93d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=5bcb3cd5-9799-44b0-8f04-441ef2e1d768 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash f6411a4288303d88b08b62497ea81bd0 41e4f546c0c094db8500d055ead90bec20da22ee e8b049d2741676e66f440bc845778ee6795ed5c18cfcf638dc36afa85dc9fbb5 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=5bcb3cd5-9799-44b0-8f04-441ef2e1d768 HTTP/1.1 Host: 2b3fcba93d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://2b3fcba93d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5bcb3cd5-9799-44b0-8f04-441ef2e1d768 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	22e1ef2cb3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0	193.108.118.16	200 OK	37 kB
URL 22e1ef2cb3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63585) Size 37 kB (37224 bytes) Hash e01a3d5148af62eb750f79801aec45ab d83b854bb8d22d87d95efb9c682cdfe04a81594e f40d584b71f35fbbd92323b6d5d5a19bdf0f34dc04c3ed59b22a8236a2ada37a HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0 HTTP/1.1 Host: 22e1ef2cb3.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://2b3fcba93d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	22e1ef2cb3.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL 22e1ef2cb3.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: 22e1ef2cb3.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://22e1ef2cb3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://22e1ef2cb3.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclcp; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:26 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:26 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclct; expires=Mon, 13 Jan 2025 01:26:26 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:52 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://22e1ef2cb3.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-length: 0 location: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 19b9b1fd8b.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL 19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon2.png	193.108.118.16	200 OK	4.6 kB
URL 19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon2.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.6 kB (4576 bytes) Hash c947d439eb93367f1af5b2a3d222f057 5b4c10820d39e624bc6df72a113679da80a8e44e aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2 HTTP Headers GET /lands/39/img/icon2.png HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 4576 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-11e0" accept-ranges: bytes X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon3.png	193.108.118.16	200 OK	7.8 kB
URL 19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon3.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.8 kB (7847 bytes) Hash 8f3cc830da0b1fdf66bda7d1d734747b 94588f041eec3a78a8780c8124c56a1434a89277 ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba HTTP Headers GET /lands/39/img/icon3.png HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 7847 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1ea7" accept-ranges: bytes X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL 19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL 19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL 19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL 19b9b1fd8b.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	22e1ef2cb3.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0	193.108.118.16	200 OK	18 kB
URL 22e1ef2cb3.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash 0852f87b728e505fd2c2419316a6e385 4b53a0f8ad15f36c5aaade9a71c7a3414bf9fc64 4c46ee65695246581c51286fde00327cd591a4964117e0a426583b9a40fac03b HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0 HTTP/1.1 Host: 22e1ef2cb3.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://22e1ef2cb3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=6ec3ff22-06f5-4847-a83f-2d7575de91e0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://19b9b1fd8b.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-length: 0 location: https://ec14ba04d8.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	28d497061d.news-bmacazo.cc/lands/61/images/spinning-circles2.svg	193.108.118.16	200 OK	36 kB
URL 28d497061d.news-bmacazo.cc/lands/61/images/spinning-circles2.svg IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type SVG Scalable Vector Graphics image Size 36 kB (36084 bytes) Hash 3261c5277f4c9cc380389f8d928cf30c 171ab92443f70f30709f6c68c38d41176942f88a 1c5053f368590a488d58713afdb50018bb5272dd602e99ab56b70ff8e13a9aba HTTP Headers GET /lands/61/images/spinning-circles2.svg HTTP/1.1 Host: 28d497061d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: image/svg+xml last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: W/"675aaa75-1f7" content-encoding: gzip X-Firefox-Spdy: h2`

	ec14ba04d8.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL ec14ba04d8.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: ec14ba04d8.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://ec14ba04d8.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://ec14ba04d8.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcld5; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:27 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:27 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclda; expires=Mon, 13 Jan 2025 01:26:27 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:54 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://ec14ba04d8.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-length: 0 location: https://f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	f1998b0816.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL f1998b0816.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: f1998b0816.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	f1998b0816.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL f1998b0816.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: f1998b0816.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf	193.108.118.16	200 OK	6.2 kB
URL f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 6.2 kB (6239 bytes) Hash 3679c56702731e11d7da075994ac73a6 e3b588d3c2caf7e87e25275d20ab62847d89640a 5099ba321e3c2f24298ba3d74961573fb7ae1fd187d2b63775e7637cfd9ba7b1 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf HTTP/1.1 Host: f1998b0816.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://ec14ba04d8.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6	193.108.118.16	200 OK	26 kB
URL 19b9b1fd8b.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 26 kB (26263 bytes) Hash 91a9983ac992f2705119465384e6bf2b b23d4029cef9e35e50365dc56253337bff241400 54ea1dcab5845eb814d378bd9740fc0e77991cf3bc74acf32af589d7b8495e2e HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	f1998b0816.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL f1998b0816.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: f1998b0816.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	f1998b0816.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL f1998b0816.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: f1998b0816.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	f1998b0816.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL f1998b0816.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: f1998b0816.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	f1998b0816.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL f1998b0816.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: f1998b0816.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f1998b0816.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e7be60e8-10f5-4e77-a012-81923fa280cf Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f1998b0816.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclda; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:27 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:27 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcldf; expires=Mon, 13 Jan 2025 01:26:27 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:54 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://f1998b0816.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-length: 0 location: https://2a63a1dec3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=76eac089-8dd1-4de9-b024-67f15a51e41d vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	2a63a1dec3.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 2a63a1dec3.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 2a63a1dec3.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://2a63a1dec3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=76eac089-8dd1-4de9-b024-67f15a51e41d Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	ec14ba04d8.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d	193.108.118.16	200 OK	37 kB
URL ec14ba04d8.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 37 kB (36831 bytes) Hash e3f3fbb234ca7accb14376c542993059 6bbba8449c0815ad0ff89f9032961b6437949a78 b0bb0645100a4a605cec2940888c4f20c460933dd07e948e674f4ea29425df54 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d HTTP/1.1 Host: ec14ba04d8.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://ec14ba04d8.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://2a63a1dec3.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-length: 0 location: https://5df3513a20.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=fcd9188c-6fc0-4e31-8bc6-77a1ea188454 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	5df3513a20.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 5df3513a20.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 5df3513a20.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://5df3513a20.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=fcd9188c-6fc0-4e31-8bc6-77a1ea188454 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	ec14ba04d8.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d	193.108.118.16	200 OK	1.5 kB
URL ec14ba04d8.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (1297) Size 1.5 kB (1477 bytes) Hash c7c44296ff223497396a514e1ee9114c 3ce310f365ad24aced1952b7882b4bc44398e36f 95954ca92703155b3b0b2c21fc63df54667f5a923c9d9c08273eec0ae5f10782 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=7f9165e8-a0b4-490f-8166-03ca67f2d51d HTTP/1.1 Host: ec14ba04d8.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://19b9b1fd8b.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://5df3513a20.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-length: 0 location: https://0e4fbc2ab5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=41242d59-fb44-40bf-a0bc-54924bec4866 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	0e4fbc2ab5.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 0e4fbc2ab5.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 0e4fbc2ab5.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0e4fbc2ab5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=41242d59-fb44-40bf-a0bc-54924bec4866 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413	193.108.118.16	200 OK	6.8 kB
URL 28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (11824) Size 6.8 kB (6751 bytes) Hash b643e49367e5b20d66a2dbf5b56408a6 1ff7827b409e9968412815ca57def8bc6a8df990 b5197c7b0ccec6a91a22239fe4a552d9a972675accc3cb3b21158074539a0f73 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 HTTP/1.1 Host: 28d497061d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://92933f8b0c.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0e4fbc2ab5.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcldr; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:28 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:28 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcle1; expires=Mon, 13 Jan 2025 01:26:28 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:56 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	8ee7102174.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86	193.108.118.16	200 OK	1.5 kB
URL 8ee7102174.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (1297) Size 1.5 kB (1478 bytes) Hash 012df09b122b9ee317384d1d9b425104 8961766e65fc348fe1ac25d75ca8f88075842580 aa9d08cbe0f39f95bd089e058bd8ebf56d92ea084de81d894e6ea363e723adf6 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86 HTTP/1.1 Host: 8ee7102174.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://aba084f35f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	adbf10a08f.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL adbf10a08f.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: adbf10a08f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://adbf10a08f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=0b1b43e9-fb29-4d64-ba69-44ae36617413 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	0e4fbc2ab5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=41242d59-fb44-40bf-a0bc-54924bec4866	193.108.118.16	200 OK	20 kB
URL 0e4fbc2ab5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=41242d59-fb44-40bf-a0bc-54924bec4866 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (57242) Size 20 kB (19895 bytes) Hash 7ced38658a02de131943198fccdd8ef5 e824db43152be275dd08c9d63a6c2840bb127c39 f242154dd8b5117447e13e6474249d8028dabe428211fbfc540859739003233b HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=41242d59-fb44-40bf-a0bc-54924bec4866 HTTP/1.1 Host: 0e4fbc2ab5.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://5df3513a20.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://adbf10a08f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-length: 0 location: https://b1bb8b217a.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	b1bb8b217a.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL b1bb8b217a.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: b1bb8b217a.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b1bb8b217a.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	b1bb8b217a.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a	193.108.118.16	200 OK	3.9 kB
URL b1bb8b217a.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (5972) Size 3.9 kB (3858 bytes) Hash 11d8dfdd92f578f466b63489abb58bef b71da5ab178a09721e5aa1237af02d19319d1919 3604d5fef398cde0288205f6e560232615145d53ba726079b9405391de186ed1 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a HTTP/1.1 Host: b1bb8b217a.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://adbf10a08f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b1bb8b217a.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcle4; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:28 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:28 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclea; expires=Mon, 13 Jan 2025 01:26:28 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:56 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://b1bb8b217a.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-length: 0 location: https://76684baea1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	adbf10a08f.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=0b1b43e9-fb29-4d64-ba69-44ae36617413	193.108.118.16	200 OK	54 kB
URL adbf10a08f.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=0b1b43e9-fb29-4d64-ba69-44ae36617413 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 54 kB (54163 bytes) Hash c90869667eedbb4e330cfc4e3089383c 4078bb96e17658994ca27c2c39ef16bcc07afea7 6593a24eca01933f29c3bb3bcd53b42178dcd820eea811038fc003e04397d238 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=0b1b43e9-fb29-4d64-ba69-44ae36617413 HTTP/1.1 Host: adbf10a08f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://adbf10a08f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=0b1b43e9-fb29-4d64-ba69-44ae36617413 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	28d497061d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413	193.108.118.16	200 OK	18 kB
URL 28d497061d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18415 bytes) Hash 79a8bf1a21592eb0e47c2c361d18be0b aafa68fbc3e8887a6ddbeb96b208e1898a3fbe66 e6320aad47801e65c8310a398f5b17f3c0be0282bf010038caf388415c6b5052 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 HTTP/1.1 Host: 28d497061d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://28d497061d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b7234723-227d-419b-ba18-19e8ef171413 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://76684baea1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-length: 0 location: https://1b9a215c67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	1b9a215c67.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 1b9a215c67.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 1b9a215c67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1b9a215c67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	1b9a215c67.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL 1b9a215c67.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: 1b9a215c67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1b9a215c67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	adc47ee5fd.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6	193.108.118.16	200 OK	22 kB
URL adc47ee5fd.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 22 kB (21917 bytes) Hash 2e868575cc651a7fdf9d426591336290 d04405517e76e3b439e34c6a55639656d78b3e86 356d2931866cbfd9c4ac78f4bfbedeb901325e707fcc886ad0107048130700bc HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=9d618c90-0064-418f-83dc-d65943f02da6 HTTP/1.1 Host: adc47ee5fd.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://467e192812.news-bwitobu.today/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:22 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	92933f8b0c.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710	193.108.118.16	200 OK	26 kB
URL 92933f8b0c.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 26 kB (26263 bytes) Hash c3ae86336221ebe840e440f1d53e1558 81ef1f86530ba1edbe416ce2f07ecedf535b0ae7 14e14970930322ff152a680807cc2f1a61ac2d7008b77922eb42d7c1769bf8ca HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 HTTP/1.1 Host: 92933f8b0c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://92933f8b0c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2112ba06-d48d-4b3e-90af-743860d45710 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:25 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	1b9a215c67.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL 1b9a215c67.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: 1b9a215c67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1b9a215c67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	1b9a215c67.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL 1b9a215c67.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: 1b9a215c67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1b9a215c67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	8ee7102174.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86	193.108.118.16	200 OK	23 kB
URL 8ee7102174.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 23 kB (23176 bytes) Hash 8166dfb3cae17bd9dad4c4aef110447b 1a2fa5863e2819118fa2cc68e34d06eb554b36d3 dcc1bb0a84e1b37335937f5786ba6bedc70ece0f2a34a0217a30b919f33be63c HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86 HTTP/1.1 Host: 8ee7102174.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8ee7102174.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=77f3a61e-4455-49be-af9e-124919d0cf86 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:24 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	467e192812.news-bwitobu.today/?id=1276457389&p1=1328&traceId=262d7ec9-173c-48a5-b867-69afd88fb916	144.76.106.61	200 OK	82 kB
URL 467e192812.news-bwitobu.today/?id=1276457389&p1=1328&traceId=262d7ec9-173c-48a5-b867-69afd88fb916 IP 144.76.106.61:0 ASN #24940 Hetzner Online GmbH File type HTML document, ASCII text, with very long lines (64236) Size 82 kB (81734 bytes) Hash dd1cd0fa1eb5bea831d55d6373bc28c8 5375a445a49d390852780b5d3d25c4ec8823c8e8 ae859ac748128d8ec46de9a7db5fabafc34f47fa337e5f62cf76482fa03c689c HTTP Headers GET /?id=1276457389&p1=1328&traceId=262d7ec9-173c-48a5-b867-69afd88fb916 HTTP/1.1 Host: 467e192812.news-bwitobu.today User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1919.rpnetworks.xyz/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:21 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1b9a215c67.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclee; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:29 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:29 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclej; expires=Mon, 13 Jan 2025 01:26:29 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:52:58 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1b9a215c67.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-length: 0 location: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 0fe3af2d1f.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL 0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon2.png	193.108.118.16	200 OK	4.6 kB
URL 0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon2.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.6 kB (4576 bytes) Hash c947d439eb93367f1af5b2a3d222f057 5b4c10820d39e624bc6df72a113679da80a8e44e aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2 HTTP Headers GET /lands/39/img/icon2.png HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 4576 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-11e0" accept-ranges: bytes X-Firefox-Spdy: h2`

	76684baea1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba	193.108.118.16	200 OK	34 kB
URL 76684baea1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 34 kB (33940 bytes) Hash 15d5e18c39bb3bef9dd47a5b22d47e8c e2f6fd643af735f259bb747b5a97fc75ce8d08a3 47614a80462231f4c09ff73eedb60347db2da43436adfe604877f0f3caec71e9 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba HTTP/1.1 Host: 76684baea1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://b1bb8b217a.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL 0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL 0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL 0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL 0fe3af2d1f.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	76684baea1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba	193.108.118.16	200 OK	37 kB
URL 76684baea1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 37 kB (36831 bytes) Hash 172e55abc80df554037a49739b2ce9a3 8726a2dde59ce222d174ed53d4258e7510382ed1 c6efe856deaa7b7e55e9aa4d1cb7e7cf8611301a704e15e6690bf140c4f1b504 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba HTTP/1.1 Host: 76684baea1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://76684baea1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c17ec740-04dc-4ae1-a631-1d32f21c64ba Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://0fe3af2d1f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-length: 0 location: https://3c44c93776.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f	193.108.118.16	200 OK	54 kB
URL 0fe3af2d1f.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 54 kB (54163 bytes) Hash 6d23af206db2aa02999affb20604f24f fa592c64cd9ef1c6f4523fcd3237fbf81f7a6ae8 e031ccd6377634d6483959e14afd75e4dbf2c31c93756ad2c74f23923c143080 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	3c44c93776.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28	193.108.118.16	200 OK	6.0 kB
URL 3c44c93776.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (13666) Size 6.0 kB (5975 bytes) Hash 810af2197f101fb1f0823a849da12b69 edfeb4a4f93ef0132e910b26c241f68ac059b11c 48f8d613828e9ff2732e9e113db03554dd6675a94429293a27fadf5ee9d01a0d HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 HTTP/1.1 Host: 3c44c93776.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://0fe3af2d1f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	3c44c93776.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL 3c44c93776.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: 3c44c93776.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://3c44c93776.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	3c44c93776.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28	193.108.118.16	200 OK	18 kB
URL 3c44c93776.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash 9a392e94f0fde63b460e8d03337b92a8 af0210bb8c57229ee679ff5afcdd1cab2393684b 3b2b4d5ca919f58ff68a0b09d01b2d8913e076390eef496baa6def2c8297d14a HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 HTTP/1.1 Host: 3c44c93776.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://3c44c93776.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://3c44c93776.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-length: 0 location: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 07f099bd01.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL 07f099bd01.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/img/icon2.png	193.108.118.16	200 OK	4.6 kB
URL 07f099bd01.news-bmacazo.cc/lands/39/img/icon2.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.6 kB (4576 bytes) Hash c947d439eb93367f1af5b2a3d222f057 5b4c10820d39e624bc6df72a113679da80a8e44e aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2 HTTP Headers GET /lands/39/img/icon2.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 4576 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-11e0" accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/img/icon3.png	193.108.118.16	200 OK	7.8 kB
URL 07f099bd01.news-bmacazo.cc/lands/39/img/icon3.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.8 kB (7847 bytes) Hash 8f3cc830da0b1fdf66bda7d1d734747b 94588f041eec3a78a8780c8124c56a1434a89277 ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba HTTP Headers GET /lands/39/img/icon3.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 7847 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1ea7" accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL 07f099bd01.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL 07f099bd01.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL 07f099bd01.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL 07f099bd01.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclf1; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:30 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:30 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclf6; expires=Mon, 13 Jan 2025 01:26:30 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:00 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://07f099bd01.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-length: 0 location: https://6cd55d1bc5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=302585df-a578-4d38-84fa-a6127469889a vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/lands/39/favicon.png	193.108.118.16	200 OK	589 B
URL 07f099bd01.news-bmacazo.cc/lands/39/favicon.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Size 589 B (589 bytes) Hash 7aa6dabae45e4a52f56e44b50b5658f1 84c41727fef803fc3943100394d88c0ae6263703 53466f7f446de27529a565f88bfe3179dd83d6a9fcfab5942dcb13bd6aeb7ce5 HTTP Headers GET /lands/39/favicon.png HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 589 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-24d" accept-ranges: bytes X-Firefox-Spdy: h2`

	6cd55d1bc5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=302585df-a578-4d38-84fa-a6127469889a	193.108.118.16	200 OK	62 kB
URL 6cd55d1bc5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=302585df-a578-4d38-84fa-a6127469889a IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 62 kB (61844 bytes) Hash 789c22b5ce1f43de25fc7f6d718a4b87 af643c99ed921046379fe4917791c1fe52cd9eb9 783127c9c2cf4cc4c5a42c9c52509e2697175eaedf1c858acfa0cec9eea477a6 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=302585df-a578-4d38-84fa-a6127469889a HTTP/1.1 Host: 6cd55d1bc5.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://07f099bd01.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6	193.108.118.16	200 OK	19 kB
URL 19b9b1fd8b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (26749) Size 19 kB (19002 bytes) Hash c338a17201b436af3fc48aed892bbbfd 772ec96da25781ebad44e8796ecc34d183c695c8 4ce71c77c66581b39c5e8e7dadcbf57de6420221fc80b5e23b73bdd7f75cfd3c HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=15ca5f33-3853-47b4-bdaa-7b629726a7a6 HTTP/1.1 Host: 19b9b1fd8b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://22e1ef2cb3.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:26 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://6cd55d1bc5.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-length: 0 location: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889	193.108.118.16	200 OK	37 kB
URL 6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63844) Size 37 kB (37412 bytes) Hash a34abeecfc9e68b9a467f3e04e076111 482b47181c4e50b696becdb50fdf6a92f69e145e 24d79a6a36f5cf4c7bc096ebf55fbd9cda99afc9d0401bf6079a07d3b0a210ce HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://6cd55d1bc5.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL 6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon2.png	193.108.118.16	200 OK	4.6 kB
URL 6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon2.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.6 kB (4576 bytes) Hash c947d439eb93367f1af5b2a3d222f057 5b4c10820d39e624bc6df72a113679da80a8e44e aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2 HTTP Headers GET /lands/39/img/icon2.png HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 4576 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-11e0" accept-ranges: bytes X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon3.png	193.108.118.16	200 OK	7.8 kB
URL 6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon3.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.8 kB (7847 bytes) Hash 8f3cc830da0b1fdf66bda7d1d734747b 94588f041eec3a78a8780c8124c56a1434a89277 ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba HTTP Headers GET /lands/39/img/icon3.png HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 7847 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1ea7" accept-ranges: bytes X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL 6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	07f099bd01.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783	193.108.118.16	200 OK	22 kB
URL 07f099bd01.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 22 kB (21680 bytes) Hash add1ad980f4760e323a1bddba3d4d216 6fb49c1da8daa45b410321e39bf605d8029e9d79 df7027ea7f50ef16a885bb4ef811adbacee4e692273fcca993c4da0fcaa2bffe HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 HTTP/1.1 Host: 07f099bd01.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://07f099bd01.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4d759bd-07b0-48e3-8593-fcb6e0c00783 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL 6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL 6f0b1c26d1.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclfb; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:30 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:30 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclff; expires=Mon, 13 Jan 2025 01:26:30 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:00 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://6f0b1c26d1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-length: 0 location: https://6eb6ba36f2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	6eb6ba36f2.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 6eb6ba36f2.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 6eb6ba36f2.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6eb6ba36f2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6eb6ba36f2.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclff; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:31 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:31 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclfl; expires=Mon, 13 Jan 2025 01:26:31 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:02 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://6eb6ba36f2.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-length: 0 location: https://dcea12d945.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	dcea12d945.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL dcea12d945.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: dcea12d945.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://dcea12d945.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	3c44c93776.news-bmacazo.cc/lands/61/images/spinning-circles2.svg	193.108.118.16	200 OK	19 kB
URL 3c44c93776.news-bmacazo.cc/lands/61/images/spinning-circles2.svg IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type SVG Scalable Vector Graphics image Size 19 kB (18753 bytes) Hash c944a0ecd0e74ca4cbf24338be9b99bc 948852a24cd6ab7e658c67424cfe98d65f34bc31 e13b9f95f70496e7561ac9bc7eba161fca1e81830646cf700f7d8e87f6d952a7 HTTP Headers GET /lands/61/images/spinning-circles2.svg HTTP/1.1 Host: 3c44c93776.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://3c44c93776.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09fea812-6b75-4472-87db-b23666ad5d28 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: image/svg+xml last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: W/"675aaa75-1f7" content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dcea12d945.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-length: 0 location: https://0f92a3fc9f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d2aaefa1-1993-4022-85a3-3641284edb14 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	0f92a3fc9f.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 0f92a3fc9f.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 0f92a3fc9f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0f92a3fc9f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d2aaefa1-1993-4022-85a3-3641284edb14 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	0f92a3fc9f.news-bmacazo.cc/lands/61/css/style.css	193.108.118.16	200 OK	1.6 kB
URL 0f92a3fc9f.news-bmacazo.cc/lands/61/css/style.css IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type ASCII text, with very long lines (6517), with no line terminators Size 1.6 kB (1602 bytes) Hash 100cee95b3c98fb1cf68040edd24e2a1 838847841beaf376403a44c6528aa66ed54f2bb6 6c174c172836cb2ebc57c3ede42ad28c92d52a3d5bc60925c44d99b48efa0d8e HTTP Headers GET /lands/61/css/style.css HTTP/1.1 Host: 0f92a3fc9f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0f92a3fc9f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d2aaefa1-1993-4022-85a3-3641284edb14 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: text/css content-length: 1602 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-642" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	0f92a3fc9f.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL 0f92a3fc9f.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: 0f92a3fc9f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0f92a3fc9f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d2aaefa1-1993-4022-85a3-3641284edb14 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	6f0b1c26d1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889	193.108.118.16	200 OK	18 kB
URL 6f0b1c26d1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash 2d91134a9c3174256d62a968f6d2877f 664e4ebaaf22a0d410f9d35b9770689b833ebb43 a3534b1bb4ba8837006c060b1e58c274605938641ae9fe1317439c8b01677ffb HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 HTTP/1.1 Host: 6f0b1c26d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6f0b1c26d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3d596745-58a8-4c59-b826-3b6acdb4d889 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://0f92a3fc9f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-length: 0 location: https://e4447de45d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	e4447de45d.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL e4447de45d.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: e4447de45d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4447de45d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	dcea12d945.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9	193.108.118.16	200 OK	20 kB
URL dcea12d945.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 20 kB (20018 bytes) Hash c3732527256cdd0208e50bfa5bec5759 97d71844f7966973c3ad08a80e00a34546317955 9012f81c294b5eaf90581f93f372ff60dfe22d8fa70c06d76fe9e9879f2752ab HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9 HTTP/1.1 Host: dcea12d945.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://dcea12d945.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	e4447de45d.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL e4447de45d.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: e4447de45d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4447de45d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4447de45d.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclg3; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:31 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:31 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclg7; expires=Mon, 13 Jan 2025 01:26:31 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:02 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://e4447de45d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-length: 0 location: https://f2ee15e679.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	0f92a3fc9f.news-bmacazo.cc/lands/61/images/spinning-circles2.svg	193.108.118.16	200 OK	36 kB
URL 0f92a3fc9f.news-bmacazo.cc/lands/61/images/spinning-circles2.svg IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type SVG Scalable Vector Graphics image Size 36 kB (36084 bytes) Hash 3261c5277f4c9cc380389f8d928cf30c 171ab92443f70f30709f6c68c38d41176942f88a 1c5053f368590a488d58713afdb50018bb5272dd602e99ab56b70ff8e13a9aba HTTP Headers GET /lands/61/images/spinning-circles2.svg HTTP/1.1 Host: 0f92a3fc9f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0f92a3fc9f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d2aaefa1-1993-4022-85a3-3641284edb14 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: image/svg+xml last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: W/"675aaa75-1f7" content-encoding: gzip X-Firefox-Spdy: h2`

	e4447de45d.news-bmacazo.cc/lands/61/images/spinning-circles2.svg	193.108.118.16	200 OK	337 B
URL e4447de45d.news-bmacazo.cc/lands/61/images/spinning-circles2.svg IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type SVG Scalable Vector Graphics image Size 337 B (337 bytes) Hash 14e6f9981fa27406176056df2451d27b aa1b6fd6071391d0031bff2d74ae77347ec2fdb4 466d361db2f130d7e3d40a671c935e3e556c3a49567657afee2e44a0a390a84f HTTP Headers GET /lands/61/images/spinning-circles2.svg HTTP/1.1 Host: e4447de45d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4447de45d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: image/svg+xml last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: W/"675aaa75-1f7" content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://f2ee15e679.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-length: 0 location: https://022f367764.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	022f367764.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8	193.108.118.16	200 OK	62 kB
URL 022f367764.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 62 kB (61842 bytes) Hash d914c8d239cec667b73d25b0c5ed1e6d f4db2291f93864a26c5af5870b0279ea7d69bca5 77432273a7a74d9378e5d85f5f591f4da098474e1bd3bcae08f14e072b28fb10 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8 HTTP/1.1 Host: 022f367764.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://f2ee15e679.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://022f367764.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclge; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:32 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:32 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclgj; expires=Mon, 13 Jan 2025 01:26:32 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:04 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://022f367764.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-length: 0 location: https://bb57d10ab5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=da2f1627-0cdb-450d-9be9-030366355705 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	dcea12d945.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9	193.108.118.16	200 OK	62 kB
URL dcea12d945.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 62 kB (61841 bytes) Hash 853b86d1e32a9dcf9fc5c4e952f63856 ca66c18c8109bd1bffb3e92b539dc9fd80064fb7 2539bac31fe4a967fd54c16f37f4e99f27052bf345a0e7e33027e964e54e62ca HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=c67aa99a-0210-4cdf-bb76-e64086c592e9 HTTP/1.1 Host: dcea12d945.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://6eb6ba36f2.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	1b9a215c67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20	193.108.118.16	200 OK	20 kB
URL 1b9a215c67.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (57242) Size 20 kB (20076 bytes) Hash 1882f56bfafc19fd410fe5e066064142 cc87ea46b68d22998d250fc3d9e6f4c945fb6311 b2b4a4928b4caa4df7b318c04d03ff1ba2a40212e3c3123b55465fd2abd227c5 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=310833ae-4d2a-449c-a023-a6f66658fe20 HTTP/1.1 Host: 1b9a215c67.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://76684baea1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://bb57d10ab5.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-length: 0 location: https://7094dcf5ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	7094dcf5ad.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 7094dcf5ad.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 7094dcf5ad.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://7094dcf5ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	7094dcf5ad.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb	193.108.118.16	200 OK	25 kB
URL 7094dcf5ad.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 25 kB (24655 bytes) Hash 6b6dae42af79ac0313d47f77368e0874 dad793f53b8f3761a067e4b36dc58e9cfee6ffef 9b9b452ed4e5a2adbca66258c7382ef3293d7bacaa945168ede65d4c0e7fd98f HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb HTTP/1.1 Host: 7094dcf5ad.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://7094dcf5ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	7094dcf5ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb	193.108.118.16	200 OK	26 kB
URL 7094dcf5ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 26 kB (26097 bytes) Hash 724b12055666576639d1e0ce8ee613be ff8e2ba67f73e43c8897a527a361a5c45fdc22da adfc23a0906f8c6f9444a06a51346ebfc12c0f2a61cd10f0e47a069eb803273a HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=5a25523e-b128-4a17-bef8-656ea97a8bcb HTTP/1.1 Host: 7094dcf5ad.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://bb57d10ab5.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://7094dcf5ad.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-length: 0 location: https://1edba1a0f7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b8542435-647e-4d0c-8e73-168e820c59e2 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	1edba1a0f7.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 1edba1a0f7.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 1edba1a0f7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1edba1a0f7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b8542435-647e-4d0c-8e73-168e820c59e2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	1edba1a0f7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b8542435-647e-4d0c-8e73-168e820c59e2	193.108.118.16	200 OK	6.0 kB
URL 1edba1a0f7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b8542435-647e-4d0c-8e73-168e820c59e2 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (13666) Size 6.0 kB (5974 bytes) Hash 0ec24d702e005dd15c1f9fd78605ae64 8ffcde55469ffcde9138e03022d52d4cf997c548 0bfb34a6ed2b62fb9c8454dea959e8293c9d253dd43e7905e668b9cf571dd439 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=b8542435-647e-4d0c-8e73-168e820c59e2 HTTP/1.1 Host: 1edba1a0f7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://7094dcf5ad.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	1edba1a0f7.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL 1edba1a0f7.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: 1edba1a0f7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1edba1a0f7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b8542435-647e-4d0c-8e73-168e820c59e2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1edba1a0f7.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclgv; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:33 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:33 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclh4; expires=Mon, 13 Jan 2025 01:26:33 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:06 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1edba1a0f7.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-length: 0 location: https://47f908ca4d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	47f908ca4d.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 47f908ca4d.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 47f908ca4d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://47f908ca4d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f	193.108.118.16	200 OK	20 kB
URL 0fe3af2d1f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (57242) Size 20 kB (20077 bytes) Hash eb20575e969fd13dcbc94d35a792283d 06920eb56f467b7cee4283b595d37e5fae12bcec 07e0accb2c4d92b4e0a84f44d5268e146379814ad8e5812f5f185b4ecc2013e2 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=cca856b6-c25a-4015-80cd-660a12d13a4f HTTP/1.1 Host: 0fe3af2d1f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1b9a215c67.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:29 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://47f908ca4d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-length: 0 location: https://ea8bb36853.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	6eb6ba36f2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a	193.108.118.16	200 OK	62 kB
URL 6eb6ba36f2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 62 kB (61842 bytes) Hash 7327cc6579dfc2e88cf3d6ed22f86d9a 8328c65495cca1b861bdd152c036c14e584f7d2d d9a8b11b7f466eb7f00492f993fc7ebfed5e78cf9931f63d10387af8133fb9f5 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a HTTP/1.1 Host: 6eb6ba36f2.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://6f0b1c26d1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	ea8bb36853.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL ea8bb36853.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: ea8bb36853.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://ea8bb36853.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	47f908ca4d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c	193.108.118.16	200 OK	6.4 kB
URL 47f908ca4d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (7564) Size 6.4 kB (6422 bytes) Hash 9d7f2081fbbe12e8262c22616d0e1c58 0f050c0906fdcc5dbe54c50253400635c0d14a55 d8d766045ea6d5d135cf736fa2151c4fae81b71f998699b1bbc17712c06e1b48 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c HTTP/1.1 Host: 47f908ca4d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1edba1a0f7.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://ea8bb36853.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-length: 0 location: https://14fd7d4c1e.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	ea8bb36853.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851	193.108.118.16	200 OK	37 kB
URL ea8bb36853.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63585) Size 37 kB (37225 bytes) Hash cea03b9c6ce7cc8ef3d1a1bfd5875b33 b8141c90a10da54afeeca1b52a287e7c2c3a3cad 2961cd2ffaab2f005165f9a4e1567b20573feff595741619a304464dbd68dd99 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851 HTTP/1.1 Host: ea8bb36853.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://47f908ca4d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	ea8bb36853.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851	193.108.118.16	200 OK	18 kB
URL ea8bb36853.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash 741651107c347e4d49f1616ea229e46b 322807ac684a66eeec7e6db6ecee27bf395566b5 b56614be95252a4b46506a8eaff83d3e5578ea6b463e10df25b42027973fb5a4 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851 HTTP/1.1 Host: ea8bb36853.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://ea8bb36853.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f7140cf-970e-45a2-898e-17a0dcd32851 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://14fd7d4c1e.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-length: 0 location: https://3677a2834c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	3677a2834c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4	193.108.118.16	200 OK	42 kB
URL 3677a2834c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (62772) Size 42 kB (42169 bytes) Hash 6e6c7fdd89d0de99865c739d888e65b5 072855d4d31840c3229ae9b07105d38cd04ccea0 bb0a391e67a45ac25ee2df5740e27a85de306fef5b7556f338d8cdd3d09c4846 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4 HTTP/1.1 Host: 3677a2834c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://14fd7d4c1e.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://3677a2834c.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclhg; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:34 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:34 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclhl; expires=Mon, 13 Jan 2025 01:26:34 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:08 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://3677a2834c.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-length: 0 location: https://0887f74b80.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=a113f528-a289-4a29-b274-e0f161d057d9 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	14fd7d4c1e.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912	193.108.118.16	200 OK	54 kB
URL 14fd7d4c1e.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 54 kB (54162 bytes) Hash 6773f265e2f4522905296c38a0f43822 099718320e6227e099072d35a2104d21dc36b982 d53e315f3fac81e9e3165902d25202ac0c938c4dfc142755a822147503bdf6ab HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912 HTTP/1.1 Host: 14fd7d4c1e.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://14fd7d4c1e.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://0887f74b80.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclhl; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:34 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:34 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclhq; expires=Mon, 13 Jan 2025 01:26:34 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:08 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://0887f74b80.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-length: 0 location: https://88bf0aa1b7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	88bf0aa1b7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c	193.108.118.16	200 OK	42 kB
URL 88bf0aa1b7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (62772) Size 42 kB (42168 bytes) Hash 2c57bfafe50084f926a6213fb367daae c919d68040bd863ab72ff4e31c98f0ec9216df3c a60fd7dee186555f233ff667b5ac26336ef84ed9da366ff0afbf583124f97b94 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c HTTP/1.1 Host: 88bf0aa1b7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://0887f74b80.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	e4447de45d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2	193.108.118.16	200 OK	4.7 kB
URL e4447de45d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (7345) Size 4.7 kB (4709 bytes) Hash 462085431556277794e15b9acc59a2df 46aca8f6f7705ee53876dc81ee226b34ea826681 2218f482a15268221218548e6f6ba733c73ddb5ae8b0a0ec478ccccc429c7c7a HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 HTTP/1.1 Host: e4447de45d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://0f92a3fc9f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://88bf0aa1b7.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-length: 0 location: https://fdba5d111b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	fdba5d111b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27	193.108.118.16	200 OK	53 kB
URL fdba5d111b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63941) Size 53 kB (53081 bytes) Hash e210e9e5251cb0407d3ebeba84122c05 1757ccb26043ad5f4a4a337fe2bf75016d92f38c c8f27c43e8d9875cc1dddf8414814ffd296fb61f12b6f26c81ae9744299107fe HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27 HTTP/1.1 Host: fdba5d111b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://88bf0aa1b7.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://fdba5d111b.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclhv; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:34 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:34 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcli3; expires=Mon, 13 Jan 2025 01:26:34 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:08 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fdba5d111b.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-length: 0 location: https://e4f152f201.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	88bf0aa1b7.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c	193.108.118.16	200 OK	54 kB
URL 88bf0aa1b7.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 54 kB (54160 bytes) Hash 6c352995f455712d77ac29791e38d70f 20596cc694222f3118c8a4eec530260a1b7f1492 5442f146e86ab77bd7f768f3bb1b090b1323325847571aaa7c6cd4d85ff7109a HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c HTTP/1.1 Host: 88bf0aa1b7.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://88bf0aa1b7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=99a53d04-6208-4184-8420-89da13d6ed3c Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	47f908ca4d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c	193.108.118.16	200 OK	26 kB
URL 47f908ca4d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 26 kB (25665 bytes) Hash e04c5ebe89f63b93e6e36403da77c501 c432a89a3255b08fa3f32b82c6b3bc09f26f9ebd b7b380b7f6059914c19b45f49aa9e74b34ff384a4c50ebdb47b5b94cd959ddb7 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c HTTP/1.1 Host: 47f908ca4d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://47f908ca4d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ecb1712c-100d-4077-8120-0ec91585da1c Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	5df3513a20.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=fcd9188c-6fc0-4e31-8bc6-77a1ea188454	193.108.118.16	200 OK	31 kB
URL 5df3513a20.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=fcd9188c-6fc0-4e31-8bc6-77a1ea188454 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 31 kB (30673 bytes) Hash ec8baf3d13cb6532d50ca5e91fdfd01e 975bf721c141aa3e2d54741bbcf0b23f73a9edc7 75e79411824df601e8ab439fc66a4760a205afd60b24c13a2c0edcba26c7742f HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=fcd9188c-6fc0-4e31-8bc6-77a1ea188454 HTTP/1.1 Host: 5df3513a20.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://2a63a1dec3.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:27 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	6eb6ba36f2.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a	193.108.118.16	200 OK	45 kB
URL 6eb6ba36f2.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 45 kB (44677 bytes) Hash ff07e5ec336b9c7dcce055358f4c71cc 99a2e750a4d90e608b6358ba94c7280160c5abc2 50b881d0b35dc4319127b011143e04fd3437681d871b44208ebd7374523fb478 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a HTTP/1.1 Host: 6eb6ba36f2.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://6eb6ba36f2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1c99296e-0292-49c7-9498-643a81f9f47a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:30 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	f2ee15e679.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0	193.108.118.16	200 OK	25 kB
URL f2ee15e679.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 25 kB (25448 bytes) Hash 617b96fc73ce9f7bf80e4b4579151a85 96b989f7a100d87d39a9d79abc922b17d19767be 70f4d16ba71ac666bd1b974e9ec395fc4a5b731391f77eb4906f5125e5305da1 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0 HTTP/1.1 Host: f2ee15e679.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f2ee15e679.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	022f367764.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8	193.108.118.16	200 OK	22 kB
URL 022f367764.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 22 kB (21679 bytes) Hash 456f2473ddc234cebe24a6ed6509c8ec b215f9385c08ab795ca2609a615d66fe037382ce 83d90d53550ae8ec87e89db18b5afd1a29b23fc8192c241dee44ef2f2825f17a HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8 HTTP/1.1 Host: 022f367764.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://022f367764.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=07eace25-018e-4ed3-b057-2c1af502b4a8 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	e4f152f201.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL e4f152f201.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: e4f152f201.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4f152f201.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	e4f152f201.news-bmacazo.cc/lands/39/img/icon8.png	193.108.118.16	200 OK	4.1 kB
URL e4f152f201.news-bmacazo.cc/lands/39/img/icon8.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.1 kB (4064 bytes) Hash f92d6474ebc6a3a0b576749cfb4afe98 0f4ce3dcf04873b8098c01d20c44967fb9fce0cc 3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1 HTTP Headers GET /lands/39/img/icon8.png HTTP/1.1 Host: e4f152f201.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4f152f201.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: image/png content-length: 4064 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-fe0" accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4f152f201.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcli3; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:35 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:35 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclib; expires=Mon, 13 Jan 2025 01:26:35 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:10 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://e4f152f201.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-length: 0 location: https://9d1c875eb1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b6f2344b-9407-4be8-9fa3-e817c12df5dc vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	9d1c875eb1.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 9d1c875eb1.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 9d1c875eb1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://9d1c875eb1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b6f2344b-9407-4be8-9fa3-e817c12df5dc Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://9d1c875eb1.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclib; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:35 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:35 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclid; expires=Mon, 13 Jan 2025 01:26:35 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:10 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://9d1c875eb1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-length: 0 location: https://a32fc268a0.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=798f0462-08e0-4824-b8f9-1a4cfd1e26c0 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	a32fc268a0.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL a32fc268a0.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: a32fc268a0.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a32fc268a0.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=798f0462-08e0-4824-b8f9-1a4cfd1e26c0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	bb57d10ab5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=da2f1627-0cdb-450d-9be9-030366355705	193.108.118.16	200 OK	26 kB
URL bb57d10ab5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=da2f1627-0cdb-450d-9be9-030366355705 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 26 kB (26097 bytes) Hash 425c2317547027669884d28f3f2772a3 38333ea518290688a23bd70e5c5ffd462d50fc5e 07f2fbe520a86e3b60f4d8a39bc2f2a38efc96a2b505cfacd5eeb915d2a5ff56 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=da2f1627-0cdb-450d-9be9-030366355705 HTTP/1.1 Host: bb57d10ab5.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://022f367764.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:32 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://a32fc268a0.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-length: 0 location: https://a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	a1b6801028.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL a1b6801028.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: a1b6801028.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	a1b6801028.news-bmacazo.cc/lands/61/css/style.css	193.108.118.16	200 OK	1.6 kB
URL a1b6801028.news-bmacazo.cc/lands/61/css/style.css IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type ASCII text, with very long lines (6517), with no line terminators Size 1.6 kB (1602 bytes) Hash 100cee95b3c98fb1cf68040edd24e2a1 838847841beaf376403a44c6528aa66ed54f2bb6 6c174c172836cb2ebc57c3ede42ad28c92d52a3d5bc60925c44d99b48efa0d8e HTTP Headers GET /lands/61/css/style.css HTTP/1.1 Host: a1b6801028.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: text/css content-length: 1602 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-642" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	a1b6801028.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL a1b6801028.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: a1b6801028.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	e4f152f201.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe	193.108.118.16	200 OK	37 kB
URL e4f152f201.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 37 kB (36832 bytes) Hash aaef8d0b38ee316773db9896300f6e81 b226bee20bc4705d4de45b65baea5992bfa2cc3f 5d36f79a6b4c3d318cc1d1e5e3994a300bafe59ba3050c8ef480b588be81812c HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe HTTP/1.1 Host: e4f152f201.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4f152f201.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://a1b6801028.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-length: 0 location: https://9631cdd1c3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=0ec70e9a-0f94-4c0e-a71b-e1b9dbb3f593 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	f2ee15e679.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0	193.108.118.16	200 OK	58 kB
URL f2ee15e679.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (55483) Size 58 kB (58130 bytes) Hash 309be9c4d46cd38bb1c32763878acbc4 1b3c1ecc6eed377a47536413eea109439b3f8fd2 84778a2de29e503f4db884c7ef788703e17c371472b06ccf021384430847a658 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=9023ea84-5d96-4990-84e2-31353cab51d0 HTTP/1.1 Host: f2ee15e679.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://e4447de45d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	fdba5d111b.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27	193.108.118.16	200 OK	18 kB
URL fdba5d111b.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash c6887b114e484a95338e3b1d4354940c 69d9f3712402c072cd1f90774c2d7333927eb84e 3a0a3e97aa731048c322f31b84ddbb55d30a35e6d994eff379425d055cd218df HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27 HTTP/1.1 Host: fdba5d111b.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://fdba5d111b.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f80c91a4-5755-4d58-a6d0-23d6a132fc27 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://9631cdd1c3.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-length: 0 location: https://57c804098c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	57c804098c.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 57c804098c.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 57c804098c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://57c804098c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://57c804098c.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclis; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:36 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:36 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclj1; expires=Mon, 13 Jan 2025 01:26:36 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:12 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://57c804098c.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-length: 0 location: https://8d22420a81.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	8d22420a81.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 8d22420a81.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 8d22420a81.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8d22420a81.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	57c804098c.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f	193.108.118.16	200 OK	18 kB
URL 57c804098c.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash d598d70a029f383800a305f56a97efd5 f359ef02da1a9a2bbbf0949b2004f9b6f5692dc9 a41bdc992d2cd5f157d0ef81cb78a967a2248d2608ff48eb8f19a623f5abd25f HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f HTTP/1.1 Host: 57c804098c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://57c804098c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://8d22420a81.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-length: 0 location: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	a1b6801028.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe	193.108.118.16	200 OK	54 kB
URL a1b6801028.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 54 kB (54162 bytes) Hash a2ff168b857e282e383806147ed612f4 d638e624041907850b9be37ce0627868fcc63e28 c44335c441f269b9b3336daba2a28cb2bfe2db69fca71aeb09251feb03ccbc42 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe HTTP/1.1 Host: a1b6801028.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	e12b75073d.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL e12b75073d.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: e12b75073d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	e12b75073d.news-bmacazo.cc/lands/39/img/icon2.png	193.108.118.16	200 OK	4.6 kB
URL e12b75073d.news-bmacazo.cc/lands/39/img/icon2.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.6 kB (4576 bytes) Hash c947d439eb93367f1af5b2a3d222f057 5b4c10820d39e624bc6df72a113679da80a8e44e aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2 HTTP Headers GET /lands/39/img/icon2.png HTTP/1.1 Host: e12b75073d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: image/png content-length: 4576 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-11e0" accept-ranges: bytes X-Firefox-Spdy: h2`

	e12b75073d.news-bmacazo.cc/lands/39/img/icon3.png	193.108.118.16	200 OK	7.8 kB
URL e12b75073d.news-bmacazo.cc/lands/39/img/icon3.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.8 kB (7847 bytes) Hash 8f3cc830da0b1fdf66bda7d1d734747b 94588f041eec3a78a8780c8124c56a1434a89277 ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba HTTP Headers GET /lands/39/img/icon3.png HTTP/1.1 Host: e12b75073d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: image/png content-length: 7847 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1ea7" accept-ranges: bytes X-Firefox-Spdy: h2`

	e12b75073d.news-bmacazo.cc/lands/39/img/icon4.png	193.108.118.16	200 OK	7.0 kB
URL e12b75073d.news-bmacazo.cc/lands/39/img/icon4.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.0 kB (7032 bytes) Hash 7ad7f32c1c0df7b4975cc41bda4ac435 81d57e996ee6cd9e122592e68ffa3d55c1ba10ff c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f HTTP Headers GET /lands/39/img/icon4.png HTTP/1.1 Host: e12b75073d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: image/png content-length: 7032 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1b78" accept-ranges: bytes X-Firefox-Spdy: h2`

	e12b75073d.news-bmacazo.cc/lands/39/img/icon5.png	193.108.118.16	200 OK	3.3 kB
URL e12b75073d.news-bmacazo.cc/lands/39/img/icon5.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3264 bytes) Hash 1e1a7582b5da63e10485d63f97abc9a0 ca3ee3067f96c732f455bc7c99ec5100194f13f6 196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503 HTTP Headers GET /lands/39/img/icon5.png HTTP/1.1 Host: e12b75073d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: image/png content-length: 3264 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cc0" accept-ranges: bytes X-Firefox-Spdy: h2`

	e12b75073d.news-bmacazo.cc/lands/39/img/icon7.png	193.108.118.16	200 OK	3.3 kB
URL e12b75073d.news-bmacazo.cc/lands/39/img/icon7.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 3.3 kB (3283 bytes) Hash b512735542cb07b3b2dcf153a7dfe456 93bde8875412ce266600e2af1c37123483a50376 e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718 HTTP Headers GET /lands/39/img/icon7.png HTTP/1.1 Host: e12b75073d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: image/png content-length: 3283 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-cd3" accept-ranges: bytes X-Firefox-Spdy: h2`

	e4447de45d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2	193.108.118.16	200 OK	22 kB
URL e4447de45d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 22 kB (22479 bytes) Hash 6e5c7879656859a13ed1379150246be3 f04b58b262d92119c70dd0e1968c500086977eed ed38720414e3c2d9b58887b1470ac4ace3e7bba5fdbe6167b5e77a5ff23072fe HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 HTTP/1.1 Host: e4447de45d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e4447de45d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=d0630bfc-ec6a-422a-b40c-2c45302961c2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:31 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclj9; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:36 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:36 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcljd; expires=Mon, 13 Jan 2025 01:26:36 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:12 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://e12b75073d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-length: 0 location: https://8b09198067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	8b09198067.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 8b09198067.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 8b09198067.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8b09198067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	8b09198067.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL 8b09198067.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: 8b09198067.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8b09198067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	a32fc268a0.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=798f0462-08e0-4824-b8f9-1a4cfd1e26c0	193.108.118.16	200 OK	26 kB
URL a32fc268a0.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=798f0462-08e0-4824-b8f9-1a4cfd1e26c0 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 26 kB (26096 bytes) Hash 159886db6ac0674b62afc2192d09c057 c53c94288cf4e7a21ac6fa545a945fa63903642a baa9c8179441a672340cb395db572613657704e66c6b98962f29aa0e97484fff HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=798f0462-08e0-4824-b8f9-1a4cfd1e26c0 HTTP/1.1 Host: a32fc268a0.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://9d1c875eb1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://8b09198067.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-length: 0 location: https://02178568cc.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea83366c-6bea-4c82-93fa-2d193b43d4f1 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	02178568cc.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 02178568cc.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 02178568cc.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://02178568cc.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea83366c-6bea-4c82-93fa-2d193b43d4f1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	14fd7d4c1e.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912	193.108.118.16	200 OK	17 kB
URL 14fd7d4c1e.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (26749) Size 17 kB (17339 bytes) Hash 7ed7343c8b65ba9cafc22920e3bce62c 4f50cb83c0aecd1fbbba4e69e27e0c6545003dce 44dde96464d2ba8e3665e4c7e8b29b46ed23130453f74f08543aae6e03201ad5 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=cfa15650-dda0-49d2-936c-5ccfda44d912 HTTP/1.1 Host: 14fd7d4c1e.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://ea8bb36853.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:33 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://02178568cc.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-length: 0 location: https://f042b82a52.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3770552b-ff3c-4624-8d78-73c575f9226e vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	f042b82a52.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL f042b82a52.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: f042b82a52.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f042b82a52.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3770552b-ff3c-4624-8d78-73c575f9226e Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://f042b82a52.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcljp; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:37 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:37 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcljv; expires=Mon, 13 Jan 2025 01:26:37 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:14 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	02178568cc.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea83366c-6bea-4c82-93fa-2d193b43d4f1	193.108.118.16	200 OK	37 kB
URL 02178568cc.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea83366c-6bea-4c82-93fa-2d193b43d4f1 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 37 kB (36832 bytes) Hash 2821e3921512d9ad7a49bbeeb13e1352 129e8bb2a30f910a466fb2812fb26cc092c4a419 b7f297ec83861b54fc7e160f59f6e37df94a3e98585763ebcaac60e212ebce30 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea83366c-6bea-4c82-93fa-2d193b43d4f1 HTTP/1.1 Host: 02178568cc.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://02178568cc.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ea83366c-6bea-4c82-93fa-2d193b43d4f1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	da10ca2533.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ae5706e6-419a-44d7-81e4-abd5d9862c45	193.108.118.16	200 OK	40 kB
URL da10ca2533.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ae5706e6-419a-44d7-81e4-abd5d9862c45 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63796) Size 40 kB (39719 bytes) Hash ad1336dbaa0743df7156158245e283e0 fce3e1afcc24d771a3f5dbf4eee1c7ad84199829 b80743a058077c290f6284ec7dc5f7a34b02ce02bc83211b0e026dbaf8de763b HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=ae5706e6-419a-44d7-81e4-abd5d9862c45 HTTP/1.1 Host: da10ca2533.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://f042b82a52.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	0887f74b80.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=a113f528-a289-4a29-b274-e0f161d057d9	193.108.118.16	200 OK	17 kB
URL 0887f74b80.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=a113f528-a289-4a29-b274-e0f161d057d9 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (26749) Size 17 kB (17340 bytes) Hash c7d0d1ab1947192e09cfcdc8d21b03ae 79c3c8494114f5fd663c9d583f257701a3bf21a3 92b1f25122c20132efa96a4f80f109eae0a207346588912cdcb948e208d74afb HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=a113f528-a289-4a29-b274-e0f161d057d9 HTTP/1.1 Host: 0887f74b80.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://3677a2834c.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	e4f152f201.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe	193.108.118.16	200 OK	5.6 kB
URL e4f152f201.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (7673) Size 5.6 kB (5633 bytes) Hash 7fbfa55848adb2a2bf8f39b1653acb95 216a11b5fd88fe9b8db77d46c6c6aebc2484cdfe 290bb547ad18778046731b52676081e2bc70d46c67dafa140aab954e8bcd3ff2 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=f73f8ad4-733e-42b6-9459-166f365ecdbe HTTP/1.1 Host: e4f152f201.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fdba5d111b.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	9d1c875eb1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b6f2344b-9407-4be8-9fa3-e817c12df5dc	193.108.118.16	200 OK	53 kB
URL 9d1c875eb1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b6f2344b-9407-4be8-9fa3-e817c12df5dc IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63941) Size 53 kB (53087 bytes) Hash ecb4016e1201912d11d0e5d0cd7008d6 7966dc2c08e8b242d442bcc055934693f9e8c9a8 ee31671d1a81fc7493e1bc13f669d5382fe945facb9dec9968970aef807403eb HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=b6f2344b-9407-4be8-9fa3-e817c12df5dc HTTP/1.1 Host: 9d1c875eb1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://e4f152f201.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	a1c7605839.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL a1c7605839.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: a1c7605839.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a1c7605839.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7bb7eb5b-e9ca-47a6-9d6b-39207ca343ed Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a1c7605839.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclk4; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:38 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:38 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclk6; expires=Mon, 13 Jan 2025 01:26:38 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:16 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	a1c7605839.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7bb7eb5b-e9ca-47a6-9d6b-39207ca343ed	193.108.118.16	200 OK	1.5 kB
URL a1c7605839.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7bb7eb5b-e9ca-47a6-9d6b-39207ca343ed IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (1297) Size 1.5 kB (1478 bytes) Hash 6c62046abfe725b69c7eaa340854d4e6 24f6c71df9a06023916c1f92357de59d89c822c1 cd104814435ad9bbcdeef010320c3a49e2893f62a97b27f4d90e0f77d837e28d HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=7bb7eb5b-e9ca-47a6-9d6b-39207ca343ed HTTP/1.1 Host: a1c7605839.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://da10ca2533.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:37 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	87dfd02eaf.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 87dfd02eaf.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 87dfd02eaf.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://87dfd02eaf.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c3541cd0-bfc8-4269-8ccf-a6f0610f5238 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	9631cdd1c3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=0ec70e9a-0f94-4c0e-a71b-e1b9dbb3f593	193.108.118.16	200 OK	63 kB
URL 9631cdd1c3.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=0ec70e9a-0f94-4c0e-a71b-e1b9dbb3f593 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 63 kB (62926 bytes) Hash fc98ba1a197db2149263ee8fe5ddfd33 a9635dc55f28c04b1f941bcde23291d213685b1a c5e254b8bdf0e7667e1efc9e6e14fe15fcd5dfff7620c9bba31892858c926848 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=0ec70e9a-0f94-4c0e-a71b-e1b9dbb3f593 HTTP/1.1 Host: 9631cdd1c3.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://a1b6801028.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://87dfd02eaf.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-length: 0 location: https://530c74e7f6.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=99e2d4c5-1e65-489e-a0c2-b3d0e7292f28 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	b1bb8b217a.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a	193.108.118.16	200 OK	54 kB
URL b1bb8b217a.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 54 kB (54163 bytes) Hash 0af8016e4a12280465a87d9da00f7fdb 4e4b8bef9a147f4d6f642ee2e879f2611f20ff26 95583d6316efd77707f559d2f3ac1659bf2f2807f2a0aa30f7bf937d3791dca1 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a HTTP/1.1 Host: b1bb8b217a.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://b1bb8b217a.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=308f1fde-1b8f-4f9c-bfe6-216e06b1440a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:28 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://530c74e7f6.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclk9; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:38 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:38 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclkd; expires=Mon, 13 Jan 2025 01:26:38 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:16 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://530c74e7f6.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-length: 0 location: https://db9b2656d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	db9b2656d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae	193.108.118.16	200 OK	62 kB
URL db9b2656d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 62 kB (61840 bytes) Hash 5886b28a40b8aea73f1cb6790f3f2cab fdf70a6fdff1dbcb0962a1a6ecd2d8b53b9fc2b7 0ea4aac9ecfcc4f1b25414659df1c2a252e1f3c9f800ea7a7b98427eef50e698 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae HTTP/1.1 Host: db9b2656d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://530c74e7f6.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	db9b2656d1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae	193.108.118.16	200 OK	18 kB
URL db9b2656d1.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18415 bytes) Hash cc117cc510c0e0ed02ef6508febfa88e 3a2aec416629906f9add197ac6fc17449fe21b5f 2fb70f935a63db9d690749452ba839ab87cfb5c07822fb16bac732f67862b826 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae HTTP/1.1 Host: db9b2656d1.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://db9b2656d1.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=a45841bb-7e97-4602-82d5-5da04ad65aae Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://db9b2656d1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-length: 0 location: https://fa03b9c1bb.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	fa03b9c1bb.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2	193.108.118.16	200 OK	40 kB
URL fa03b9c1bb.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63796) Size 40 kB (39720 bytes) Hash e97b47aa39c32cf24a393622f8b32913 f7c7b7e37e74d4be6c43a7f0eb020cbaeaa401c8 b3064148e61f56c127960fbde7d6616628412f7f0bbd7816aa2ce42bd5c2a9ba HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2 HTTP/1.1 Host: fa03b9c1bb.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://db9b2656d1.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://fa03b9c1bb.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclkk; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:38 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:38 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclkq; expires=Mon, 13 Jan 2025 01:26:38 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:16 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fa03b9c1bb.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-length: 0 location: https://c6fb39fc7d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	c6fb39fc7d.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL c6fb39fc7d.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: c6fb39fc7d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://c6fb39fc7d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://c6fb39fc7d.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclkq; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:39 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:39 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclks; expires=Mon, 13 Jan 2025 01:26:39 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:18 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://c6fb39fc7d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-length: 0 location: https://103a07140d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	8d22420a81.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee	193.108.118.16	200 OK	42 kB
URL 8d22420a81.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (62772) Size 42 kB (42168 bytes) Hash e369ba420bb92b44f67f1efe11808038 11de7abbcf796c482ee32640e786af3d8e514563 f56f554024d0a8d1cc6ae2bf2f28a8724f6ed2365d2df6b7e3c393b518aaa4cb HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee HTTP/1.1 Host: 8d22420a81.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://57c804098c.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	c6fb39fc7d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4	193.108.118.16	200 OK	18 kB
URL c6fb39fc7d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash e704f9c975c2eb8adebae2e3dbf6fe48 3974833e7cfcef059e45be7a3f48066b7aa2a69b da7a221041b40a0bfc93d5e7bec05da017ab4e408a9236954bc1fca2cee2c2cb HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4 HTTP/1.1 Host: c6fb39fc7d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://c6fb39fc7d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	c6fb39fc7d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4	193.108.118.16	200 OK	26 kB
URL c6fb39fc7d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 26 kB (26096 bytes) Hash 42c58c963699a31a9c2a330ce2f43959 72691e47da5ed94233f12cc325082ae871dc3dc2 be4d7cad742d36c1c7203c929d67453d01a191a3ecb3594810d1ea96ef326372 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=7a6759de-5346-4c43-906c-994120072fd4 HTTP/1.1 Host: c6fb39fc7d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fa03b9c1bb.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	2d08ef3fed.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 2d08ef3fed.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 2d08ef3fed.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://2d08ef3fed.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3550f9ee-f412-41b5-ba56-6488d738a8cb Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	fa03b9c1bb.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2	193.108.118.16	200 OK	18 kB
URL fa03b9c1bb.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash e7c2d0ada3426fa3f654afde1caab405 60905ae3eafb8b33449303570f4082b9b62b2903 2fb7224382b6616ec2e217981d693e6564853961f01aa6743ad2d53d84dbf175 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2 HTTP/1.1 Host: fa03b9c1bb.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://fa03b9c1bb.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=4d819870-e863-43b8-bdfa-737631abe6d2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://2d08ef3fed.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-length: 0 location: https://dbc57de1b2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=75f12ad1-4d8e-495a-9813-2fc438dc4c59 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe	193.108.118.16	200 OK	40 kB
URL a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63538) Size 40 kB (40120 bytes) Hash 9b846ae169e31b4f60cd670a36401555 e719f0485d0eeafc585aa71fd31c44763e8343b8 1acf28fc172ad82d30e3edf0bbd11884c80f906c3c155d8afacbe4c2596795f1 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe HTTP/1.1 Host: a1b6801028.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://a32fc268a0.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://dbc57de1b2.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcll3; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:39 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:39 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcll9; expires=Mon, 13 Jan 2025 01:26:39 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:18 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dbc57de1b2.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-length: 0 location: https://c2fe4209e5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5fccda6-fbbe-47ca-8849-c741e0ecd971 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	8d22420a81.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee	193.108.118.16	200 OK	73 kB
URL 8d22420a81.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 73 kB (72578 bytes) Hash a45adfe2d3f1ed3d6cdaf2a0de8aa4e0 fa9282056073db86997a7f9f9677168fdd117e90 4ac3f86a4e88f6cf50bedb1f750bcffe649b21aae2efd52049edb7b22d7d0280 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee HTTP/1.1 Host: 8d22420a81.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8d22420a81.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3f2ed001-acfd-4701-be6c-4597be5912ee Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	c2fe4209e5.news-bmacazo.cc/lands/39/img/icon1.png	193.108.118.16	200 OK	7.3 kB
URL c2fe4209e5.news-bmacazo.cc/lands/39/img/icon1.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 7.3 kB (7252 bytes) Hash 3d0ab5834c8bf7134e4d21fa3288317f c31d1a6b9df206f67ea194f4c424cdc372a423c2 0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27 HTTP Headers GET /lands/39/img/icon1.png HTTP/1.1 Host: c2fe4209e5.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://c2fe4209e5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5fccda6-fbbe-47ca-8849-c741e0ecd971 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: image/png content-length: 7252 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-1c54" accept-ranges: bytes X-Firefox-Spdy: h2`

	c2fe4209e5.news-bmacazo.cc/lands/39/img/icon2.png	193.108.118.16	200 OK	4.6 kB
URL c2fe4209e5.news-bmacazo.cc/lands/39/img/icon2.png IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Size 4.6 kB (4576 bytes) Hash c947d439eb93367f1af5b2a3d222f057 5b4c10820d39e624bc6df72a113679da80a8e44e aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2 HTTP Headers GET /lands/39/img/icon2.png HTTP/1.1 Host: c2fe4209e5.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://c2fe4209e5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5fccda6-fbbe-47ca-8849-c741e0ecd971 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: image/png content-length: 4576 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-11e0" accept-ranges: bytes X-Firefox-Spdy: h2`

	e12b75073d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5	193.108.118.16	200 OK	26 kB
URL e12b75073d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data Size 26 kB (26262 bytes) Hash 8cad278b8b5ab175d78b8cb0786c0eab 0db8ee1177b0d3b4b8fa563d196280a268825cf5 ceb806f85755ab5774f98e207dceaeb5062c538ad83f4042b8e91ef5a7901204 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 HTTP/1.1 Host: e12b75073d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e12b75073d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c924da26-0648-4b52-8601-b5a925dadae5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	c2fe4209e5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5fccda6-fbbe-47ca-8849-c741e0ecd971	193.108.118.16	200 OK	8.7 kB
URL c2fe4209e5.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5fccda6-fbbe-47ca-8849-c741e0ecd971 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type gzip compressed data, max speed, from Unix Size 8.7 kB (8693 bytes) Hash bbbeb3f34312ab6c4ad14fd66a31331e d4fabc664ac9dab0df6770389caec64e056dfe15 86bc8d1bc71f04b8d45631a7ddb1a254b415bbf0706fb92aa5b13ea3aa7c5696 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5fccda6-fbbe-47ca-8849-c741e0ecd971 HTTP/1.1 Host: c2fe4209e5.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dbc57de1b2.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://c2fe4209e5.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcll9; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:40 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:40 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclld; expires=Mon, 13 Jan 2025 01:26:40 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:20 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://c2fe4209e5.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-length: 0 location: https://693974c18d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=4037ad34-6a24-4f79-b5d2-17d3d8d44a8a vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	a1b6801028.news-bmacazo.cc/lands/61/images/spinning-circles2.svg	193.108.118.16	200 OK	36 kB
URL a1b6801028.news-bmacazo.cc/lands/61/images/spinning-circles2.svg IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type SVG Scalable Vector Graphics image Size 36 kB (36084 bytes) Hash 3261c5277f4c9cc380389f8d928cf30c 171ab92443f70f30709f6c68c38d41176942f88a 1c5053f368590a488d58713afdb50018bb5272dd602e99ab56b70ff8e13a9aba HTTP Headers GET /lands/61/images/spinning-circles2.svg HTTP/1.1 Host: a1b6801028.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://a1b6801028.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=e892f98c-32c2-4216-9dd6-35e2eac098fe Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:35 GMT content-type: image/svg+xml last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: W/"675aaa75-1f7" content-encoding: gzip X-Firefox-Spdy: h2`

	57c804098c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f	193.108.118.16	200 OK	28 kB
URL 57c804098c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 28 kB (28480 bytes) Hash bfe96ba6c2d76942aaed2c2b14b3b9ae 867e97f29c93498d4c60c5b82ae352f1f7f690c8 d0a18be9cf38171139ffbf0b7b65df85d6a5b7fd5ce9d69cd30d1273620e7e4e HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=09623207-d116-43c5-8d36-bf068e9bc70f HTTP/1.1 Host: 57c804098c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://9631cdd1c3.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	693974c18d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=4037ad34-6a24-4f79-b5d2-17d3d8d44a8a	193.108.118.16	200 OK	20 kB
URL 693974c18d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=4037ad34-6a24-4f79-b5d2-17d3d8d44a8a IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (57242) Size 20 kB (19893 bytes) Hash 192360511c6ab7fac0ed6bdc834b2786 7c843bb87e55ac78297910dbad01ea40161f1d14 462b5932ce7d389cdbd0e3f5a84b38406df2fec67541fd2c065aec1e212437a1 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=4037ad34-6a24-4f79-b5d2-17d3d8d44a8a HTTP/1.1 Host: 693974c18d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://c2fe4209e5.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://693974c18d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-length: 0 location: https://d8a390ada2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1def4294-1f0c-44a1-8558-cc5daf86c878 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	d8a390ada2.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL d8a390ada2.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: d8a390ada2.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d8a390ada2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1def4294-1f0c-44a1-8558-cc5daf86c878 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	d8a390ada2.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL d8a390ada2.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: d8a390ada2.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d8a390ada2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=1def4294-1f0c-44a1-8558-cc5daf86c878 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d8a390ada2.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclli; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:40 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:40 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcllm; expires=Mon, 13 Jan 2025 01:26:40 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:20 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://d8a390ada2.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-length: 0 location: https://267e176f18.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	103a07140d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1	193.108.118.16	200 OK	73 kB
URL 103a07140d.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 73 kB (72579 bytes) Hash ce47c559d0bd8f6c0bf54ff7b07a7ac4 512ee7cd2ac98bec6707fe038d26ee2874011d2b 5312a2532fa0854d492956439ded176e0f0792ece0b32f626e2c0727e3b96bf0 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1 HTTP/1.1 Host: 103a07140d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://103a07140d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://267e176f18.news-bmacazo.cc/ Cookie: _subid=376l60j1bpcllm; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:40 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:40 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpcllp; expires=Mon, 13 Jan 2025 01:26:40 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:20 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	267e176f18.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1	193.108.118.16	200 OK	18 kB
URL 267e176f18.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18415 bytes) Hash 44e1203d5798736c7e49c89c6a5815db 2ef492a3dab09640e55dd45a8cbc1f5cea1b0aac 1c918d8e7c2dae96f2ebf342ea47031890bf2684b438851f7957e28ebf8573c7 HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1 HTTP/1.1 Host: 267e176f18.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://267e176f18.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	39e5683dae.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 39e5683dae.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 39e5683dae.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://39e5683dae.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09b942d2-aee1-4c97-b256-4108f673ac84 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	267e176f18.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1	193.108.118.16	200 OK	26 kB
URL 267e176f18.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (63341) Size 26 kB (26106 bytes) Hash 3f5cb947c03d2aa197a1ce4e1d6f957d 07dfa89c40520622cd763e6b17da5617f8e799b4 21a99c85458203ce83788ebfe14d0f7c7a768b27050e1f74fef114d6dc1b4069 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=73e6a079-10de-425e-b9af-318a94cdb4b1 HTTP/1.1 Host: 267e176f18.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://d8a390ada2.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://39e5683dae.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:41 GMT content-length: 0 location: https://31f94fb15e.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=48f7eee7-f31f-4f5f-850b-6056c5578a3f vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	31f94fb15e.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 31f94fb15e.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 31f94fb15e.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://31f94fb15e.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=48f7eee7-f31f-4f5f-850b-6056c5578a3f Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:41 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	39e5683dae.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09b942d2-aee1-4c97-b256-4108f673ac84	193.108.118.16	200 OK	18 kB
URL 39e5683dae.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09b942d2-aee1-4c97-b256-4108f673ac84 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash acd54888c672a234bb5eecdc35cace22 5d2911bc16bfbffe4e0d80e2f2fbaa44b3dca648 802173508ce8fb77080765988f82cdc68d6b363ee318d5d7bdc66f3b05fdac7e HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=09b942d2-aee1-4c97-b256-4108f673ac84 HTTP/1.1 Host: 39e5683dae.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://39e5683dae.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=09b942d2-aee1-4c97-b256-4108f673ac84 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:40 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://31f94fb15e.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:41 GMT content-length: 0 location: https://bbbb01009d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f2e1e437-c747-4559-985f-9bdc8ce8e123 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	8b09198067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c	193.108.118.16	200 OK	37 kB
URL 8b09198067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63585) Size 37 kB (37223 bytes) Hash 722b47efdcaa6a69d2cb6d22c4c2f17c d27d25a2077b202fcfe7d48587da8d597d113c58 7433764f7b8316fe8d0b4e08732cda484b42fedfd0044f8cf57839d66fe2f7c7 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c HTTP/1.1 Host: 8b09198067.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://e12b75073d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	2d08ef3fed.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3550f9ee-f412-41b5-ba56-6488d738a8cb	193.108.118.16	200 OK	8.0 kB
URL 2d08ef3fed.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=3550f9ee-f412-41b5-ba56-6488d738a8cb IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (14081) Size 8.0 kB (8026 bytes) Hash 34b461740bd5f1535dd35b63901c2b08 43ec6d7ab06f5d64bd6df08539578e5bcfd70006 ffacca11d4ebd0e4b21ef265266cc2a608942a06b641d9750e4476c4804d2879 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=3550f9ee-f412-41b5-ba56-6488d738a8cb HTTP/1.1 Host: 2d08ef3fed.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://103a07140d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	bbbb01009d.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL bbbb01009d.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: bbbb01009d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bbbb01009d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f2e1e437-c747-4559-985f-9bdc8ce8e123 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:41 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bbbb01009d.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclm1; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:41 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:41 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclm7; expires=Mon, 13 Jan 2025 01:26:41 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:22 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	8b09198067.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c	193.108.118.16	200 OK	37 kB
URL 8b09198067.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 37 kB (36830 bytes) Hash b2c979c23fe212e87ddd5dda50e10ffb 059c33f71816c58695388ade7beeef99f75a6eb3 97b4c756af0e98ff3057302d312ee7188dd60997e1887e2d759c39611ea96cda HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c HTTP/1.1 Host: 8b09198067.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8b09198067.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=9efc2f86-319e-4b1b-996c-681777638c6c Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:36 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	8b5ee6daed.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 8b5ee6daed.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 8b5ee6daed.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8b5ee6daed.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=2a9e27db-98c7-42e7-aca7-e3900512db71 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:41 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://8b5ee6daed.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclm7; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:41 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:41 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclm9; expires=Mon, 13 Jan 2025 01:26:41 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:22 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	103a07140d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1	193.108.118.16	200 OK	6.4 kB
URL 103a07140d.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (7564) Size 6.4 kB (6421 bytes) Hash b0951c2014878ab3980777bef046aa74 9fecb6584163628003a8734bab94ef4a96ef539b b8b61fc29d308f26bf0743971a1bc3bcdef6337c2f2bef04be2b04ee4a6ae96e HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=55436d1f-b782-4276-9b9f-48991cd254c1 HTTP/1.1 Host: 103a07140d.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://c6fb39fc7d.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	530c74e7f6.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=99e2d4c5-1e65-489e-a0c2-b3d0e7292f28	193.108.118.16	200 OK	53 kB
URL 530c74e7f6.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=99e2d4c5-1e65-489e-a0c2-b3d0e7292f28 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (36695) Size 53 kB (53422 bytes) Hash 37cae4c554e1c5b36b3adc7bf8754844 318b409897f390e30cea8a1ccc08d1b82dd8e3e8 312c5478a76029128795f6239bd29071752369b728e096660659e1276a736b58 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=99e2d4c5-1e65-489e-a0c2-b3d0e7292f28 HTTP/1.1 Host: 530c74e7f6.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://87dfd02eaf.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:38 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	dbc57de1b2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=75f12ad1-4d8e-495a-9813-2fc438dc4c59	193.108.118.16	200 OK	19 kB
URL dbc57de1b2.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=75f12ad1-4d8e-495a-9813-2fc438dc4c59 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, Unicode text, UTF-8 text, with very long lines (33266) Size 19 kB (18937 bytes) Hash ee5074e6bb5452f41b088700da76dc78 1ce43019cd6bd14b917f727a66325aabbb0a540e 3bf00bda2a3be331cd58c092d0423486c997fde5278a68ede70c86a3fcbd8d34 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=75f12ad1-4d8e-495a-9813-2fc438dc4c59 HTTP/1.1 Host: dbc57de1b2.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://2d08ef3fed.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:39 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	387324c44f.news-bmacazo.cc/lands/61/js/device.js	193.108.118.16	200 OK	1.1 kB
URL 387324c44f.news-bmacazo.cc/lands/61/js/device.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (3289), with no line terminators Size 1.1 kB (1111 bytes) Hash 2d9887b21aa6b47c56e7f43e66560a4f 42cdfc5b3b23d32152750bf2cea4233044491768 863a13c42ef72b562bc7aa5005b8ff5693763ae8d16ce3bfc3d876e92a7fdf85 HTTP Headers GET /lands/61/js/device.js HTTP/1.1 Host: 387324c44f.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://387324c44f.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=ab2cfb32-9df7-4f03-9fcc-dc2d264e550a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:41 GMT content-type: application/javascript; charset=utf-8 content-length: 1111 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-457" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://387324c44f.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclm9; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:42 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:42 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclmb; expires=Mon, 13 Jan 2025 01:26:42 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:24 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	3677a2834c.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4	193.108.118.16	200 OK	37 kB
URL 3677a2834c.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 37 kB (36831 bytes) Hash 436bf9054cfa800a5c24e385744c83a7 4dcbd0e0817a11ed1faf3d326659037ba1fddddb ef02f1db363ea26fb5afc8bc469bb99a15424c32323b2b244fd4f8d5907bb00d HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4 HTTP/1.1 Host: 3677a2834c.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://3677a2834c.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=89d9f6af-f0b6-4813-9f25-73c1e54213d4 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:34 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	5c928be9ad.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 5c928be9ad.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 5c928be9ad.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://5c928be9ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	5c928be9ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79	193.108.118.16	200 OK	3.9 kB
URL 5c928be9ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (5972) Size 3.9 kB (3857 bytes) Hash 23e5d7d88324485ca8176c55c145239e 6ff13ac6ba11bf631794c8f16f367ed318699b27 5768ac391a5ed88048c7458848971570c587fcecc16ce0af93867c2291d0e3eb HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79 HTTP/1.1 Host: 5c928be9ad.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://387324c44f.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	5c928be9ad.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79	193.108.118.16	200 OK	18 kB
URL 5c928be9ad.news-bmacazo.cc/process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (57242) Size 18 kB (18416 bytes) Hash 812655f4115d2732589a405029de8941 358556f397b30ea1a443b8e6492631dfb57152b6 d47bf70e48c98d6961780ec67cb6c11440c5bdb8aba67dfca1cbbf565e960b6d HTTP Headers GET /process.js?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79 HTTP/1.1 Host: 5c928be9ad.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://5c928be9ad.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=cee58182-c39f-46ce-a520-8eb7c8653a79 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-type: application/javascript; charset=utf-8 accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Arch, Sec-CH-UA-Wow64, Sec-CH-UA-Bitness, Sec-CH-UA-Model cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 pragma: no-cache vary: Origin, Accept-Encoding X-Firefox-Spdy: h2`

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://5c928be9ad.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-length: 0 location: https://1bdffb8267.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5f9fd63-3ddc-4dda-9a45-43d006994590 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	1bdffb8267.news-bmacazo.cc/revopush_v2.js	193.108.118.16	200 OK	36 kB
URL 1bdffb8267.news-bmacazo.cc/revopush_v2.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 36 kB (35747 bytes) Hash 574181c81738b7cc4ab341ab49c80946 e00d1b716302ea9c475a29c00283cad8d60d7a59 23d0871eebca6f9eb0fac4359b300c4085c3b8bd0719f1201e299a012866d9a2 HTTP Headers `GET /revopush_v2.js HTTP/1.1 Host: 1bdffb8267.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1bdffb8267.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5f9fd63-3ddc-4dda-9a45-43d006994590 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-type: application/javascript; charset=utf-8 content-length: 35747 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-8ba3" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	1bdffb8267.news-bmacazo.cc/lands/46/sketch.min.js	193.108.118.16	200 OK	2.4 kB
URL 1bdffb8267.news-bmacazo.cc/lands/46/sketch.min.js IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type JavaScript source, ASCII text, with very long lines (4675), with no line terminators Size 2.4 kB (2379 bytes) Hash ed52afed30560dc3e13a88e35a300c18 8714792a53d24b5c641b9536a2d218d75b43b3f9 cad4eff11237dc84f803b46c8529ca9918e4429c38058a053ef5d492c707a711 HTTP Headers GET /lands/46/sketch.min.js HTTP/1.1 Host: 1bdffb8267.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1bdffb8267.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5f9fd63-3ddc-4dda-9a45-43d006994590 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-type: application/javascript; charset=utf-8 content-length: 2379 last-modified: Thu, 12 Dec 2024 09:18:45 GMT etag: "675aaa75-94b" content-encoding: gzip accept-ranges: bytes X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1bdffb8267.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclme; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:42 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:42 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclmj; expires=Mon, 13 Jan 2025 01:26:42 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:24 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1bdffb8267.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-length: 0 location: https://5621921125.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b9f69eea-1f31-4927-a32c-a1287181018e vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	1bdffb8267.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5f9fd63-3ddc-4dda-9a45-43d006994590	193.108.118.16	200 OK	37 kB
URL 1bdffb8267.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5f9fd63-3ddc-4dda-9a45-43d006994590 IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63585) Size 37 kB (37227 bytes) Hash 5f17adffdbd48a18d2ba2cbd3976e8c8 b0c95a7cb224175d4e459ed88318939745b56669 182d6c391231b901005a24d8e12243fc2826915db599b788af739d979a36cf66 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=c5f9fd63-3ddc-4dda-9a45-43d006994590 HTTP/1.1 Host: 1bdffb8267.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://5c928be9ad.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://5621921125.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclmj; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:42 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:42 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclms; expires=Mon, 13 Jan 2025 01:26:42 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:24 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://5621921125.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-length: 0 location: https://604aae98f6.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=7e03fb55-1eae-464d-9a75-c1f40e13112e vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	5621921125.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b9f69eea-1f31-4927-a32c-a1287181018e	193.108.118.16	200 OK	40 kB
URL 5621921125.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=b9f69eea-1f31-4927-a32c-a1287181018e IP 193.108.118.16:0 ASN #63023 AS-GLOBALTELEHOST File type HTML document, ASCII text, with very long lines (63796) Size 40 kB (39726 bytes) Hash 6241ec4b234e45a81adcd1ced2028694 da7b889a6b87abc0ce6913fae54bea180602f6bc f9aa32042e8c4e517d204bc026ba4b8dfe4931fe203012e3b02f91eba317ed36 HTTP Headers GET /?id=1218914904&p1=&p2=&p3=&p4=&traceId=b9f69eea-1f31-4927-a32c-a1287181018e HTTP/1.1 Host: 5621921125.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1bdffb8267.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 13 Dec 2024 01:26:42 GMT content-type: text/html; charset=UTF-8 vary: Origin x-frame-options: DENY content-encoding: gzip X-Firefox-Spdy: h2`

	partners-tds.com/WzJQVS	142.202.51.61	302 Found	0 B
URL partners-tds.com/WzJQVS IP 142.202.51.61:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WzJQVS HTTP/1.1 Host: partners-tds.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://604aae98f6.news-bmacazo.cc/ Cookie: _subid=376l60j1bpclms; 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 01:26:42 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Fri, 13 Dec 2024 01:26:42 GMT Location: https://news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= Set-Cookie: _subid=376l60j1bpclmv; expires=Mon, 13 Jan 2025 01:26:42 GMT; path=/ 933eb=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcImNhbXBhaWduc1wiOntcIjFcIjoxNzM0MDUzMTgxfSxcInRpbWVcIjoxNzM0MDUzMTgxfSJ9.ZfDIGKiC2HK0Mj8GwF43zLwDJmP0AbyTkKjhyjWdg7M; expires=Sun, 26 Nov 2079 02:53:24 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4=	23.158.56.201	302 Found	0 B
URL news-xpatado.com/tds?id=1218914904&p1=&p2=&p3=&p4= IP 23.158.56.201:0 ASN #63023 AS-GLOBALTELEHOST File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tds?id=1218914904&p1=&p2=&p3=&p4= HTTP/1.1 Host: news-xpatado.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://604aae98f6.news-bmacazo.cc/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 302 Found server: nginx date: Fri, 13 Dec 2024 01:26:43 GMT content-length: 0 location: https://c9cf9dabe7.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=f4902a8f-06f4-42ea-95c7-1fe7f137ef15 vary: Origin x-frame-options: DENY X-Firefox-Spdy: h2`

	4192712105.news-bmacazo.cc/lands/8/v_F.ico	0.0.0.0		0 B
URL GET 4192712105.news-bmacazo.cc/lands/8/v_F.ico IP 0.0.0.0:0 ASN #0 Requested by https://4192712105.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=527977ef-4e3d-44f4-842e-ba1c44e3874e Certificate IssuerLet's Encrypt Subject.news-bmacazo.cc FingerprintA7:0C:45:BE:B3:28:ED:0A:0D:78:E1:39:63:F5:9B:03:D7:CB:0D:E2 ValidityWed, 11 Dec 2024 16:43:19 GMT - Tue, 11 Mar 2025 16:43:18 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /lands/8/v_F.ico HTTP/1.1 Host: 4192712105.news-bmacazo.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://4192712105.news-bmacazo.cc/?id=1218914904&p1=&p2=&p3=&p4=&traceId=527977ef-4e3d-44f4-842e-ba1c44e3874e Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (368)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type