Report - news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/

Report Overview

Submitted URL
news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
IP
65.109.92.221
ASN
#24940 Hetzner Online GmbH
Submitted
2023-12-04 06:49:06
Access
public
Website Title
‘How Did I End Up in Indiana?’ Welcome to the Internet’s Favorite Small City – News europen
Final URL
news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
zerossl.ocsp.sectigo.com	4049	2018-08-16	2020-05-09	2023-12-03	696 B	1.6 kB	104.18.38.233
news.europenewss.com	unknown	2023-01-17	2023-06-02	2023-11-03	14 kB	625 kB	65.109.92.221
pixel.wp.com	2545	1997-03-28	2017-01-30	2023-12-03	579 B	239 B	192.0.76.3
stats.wp.com	2711	1997-03-28	2017-01-30	2023-12-03	417 B	7.3 kB	192.0.76.3
images.wsj.net	15675	1998-04-11	2018-03-16	2023-11-28	445 B	224 kB	54.230.111.30

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed
2023-12-04	medium	europenewss.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	news.europenewss.com/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8	3.0 kB	2023-03-08	2024-07-26
Pretty URL news.europenewss.com/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:47:08 Last Seen2024-07-26 22:20:01 Times Seen245 Hash 5f8687f238134479052763db1c08af7e 40df2fb06dc772a9ea86a5e706f43c858efea3e5 aeef31c70dd1e009fba6965ac0510518bc1fc7c99323dc712b204e9dc74d747f Loading...

	news.europenewss.com/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8	24 kB	2023-03-07	2024-07-26
Pretty URL news.europenewss.com/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:35 Last Seen2024-07-26 22:20:01 Times Seen455 Hash e41f2a4b95a648db78703b837706d18f ab706ee38566accffda0511b9144a0c7108d4deb 0157d11106d6b70289099fd1ce1f7bea3a9dfbb46cee3994edb07ce765bb92fc Loading...

	news.europenewss.com/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8	1.8 kB	2023-03-07	2024-07-26
Pretty URL news.europenewss.com/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:35 Last Seen2024-07-26 22:20:02 Times Seen401 Hash 7db023435c6f3a6de71502760337a7c6 ba79e4445507d934e6be6905e67bd994a87f2332 8994924c0f3ab4474ee0a7c04417ad84933c4467cc9192fcb60b9774f15f5990 Loading...

	news.europenewss.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-07-27
Pretty URL news.europenewss.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-07-27 03:56:16 Times Seen111326 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	news.europenewss.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-07-27
Pretty URL news.europenewss.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-07-27 03:56:16 Times Seen74188 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	news.europenewss.com/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8	325 B	2023-03-07	2024-07-26
Pretty URL news.europenewss.com/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:13 Last Seen2024-07-26 21:45:53 Times Seen2055 Hash 06f019a6ff09db6b297570940eec1d5d 872efe186950ce534aad341e7030fe24f7c672dc 53f829ae556bf7011727483015d83a98bcdb4b5796eecb728827c1282c971536 Loading...

	news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/	3.3 kB	2023-12-02	2023-12-04
Pretty URL news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/ IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-02 08:36:07 Last Seen2023-12-04 07:49:09 Times Seen2 Hash cf47f28202cb217639526eee6ebc41a0 f6bd5054442489c022b04cfdb8a588546785b01a d8a41e9be6888e64e74c06a2749efc700e425513b9559a5936e76d07744532b6 Loading...

	news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/	221 B	2023-12-04	2023-12-04
Pretty URL news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/ IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-04 07:49:09 Last Seen2023-12-04 07:49:09 Times Seen1 Hash a6d7bc78b96c10e4c393998d95c95791 3ee6db49d4b022efc529c5ae709028ed2c4e9a67 13e38a0b6c58cee9afcb5488700ee841cfd6f4ffeda52c85a59bdd8f97ace1e6 Loading...

	news.europenewss.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.2.3	3.8 kB	2023-03-07	2024-07-12
Pretty URL news.europenewss.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.2.3 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:59 Last Seen2024-07-12 13:18:57 Times Seen268 Hash b27718aff74affd83d576672659ea188 06fb5d122016c11a5e404cdf878147dee60560c5 0891804a56327bacae315d5e5281bee36c729cabfe22697a28083eeb39eb8608 Loading...

	stats.wp.com/e-202349.js	6.9 kB	2023-07-02	2024-07-23
Pretty URL stats.wp.com/e-202349.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-02 20:30:54 Last Seen2024-07-23 20:55:11 Times Seen11506 Hash 2567b82fc5b4900c78be291e6a957e99 114ec9e929313111ec06f33e342205c52cce5b11 ca7752fb33cf3a98c0f29bc4eec563112025da4109a0dcc69dabf5f861751258 Loading...

	news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/	254 B	2023-12-04	2023-12-04
Pretty URL news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/ IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-04 07:49:09 Last Seen2023-12-04 07:49:09 Times Seen1 Hash ef48da4d6428d593dc7f6fd764592894 9b32913297663b398bff1d3d739d6281442d91c9 8a4ff7ca2ea5e67d7acfae0a45d57d0c6d08f97593465a3448ea80c0a48ce795 Loading...

	news.europenewss.com/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.4.1	1.0 kB	2023-03-07	2024-07-26
Pretty URL news.europenewss.com/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.4.1 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:21 Last Seen2024-07-26 08:30:25 Times Seen1144 Hash 110e06930c2043d5439adeb9999f07f5 1294fd7195b1c2652c3627fe7a57f71d447313b3 d503937452e40c21fce10346b29287ad23b221a372547f248da87ca5efb55767 Loading...

	news.europenewss.com/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8	1.6 kB	2023-03-07	2024-07-23
Pretty URL news.europenewss.com/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:35 Last Seen2024-07-23 19:56:35 Times Seen392 Hash 9bb51bfce5c3adf7131480f2dce72224 95199bf629fbf044d37388172525281697ac5952 5b84335d42b38d3122349f53b20dd6a5cb0f45d1e45e5683fd572bcdda8c04a2 Loading...

	news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/	79 kB	2023-03-10	2024-06-29
Pretty URL news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/ IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 03:30:27 Last Seen2024-06-29 22:02:40 Times Seen49 Hash e4f0ebd309300856b97e35f03d7da70d 14da692b12f5cacf1bdb482b4d68e8cdba71d0e3 5b86ae53701ded3568cacd6777609e4a8f41b0eec20443ea827b41554dc24e09 Loading...

	news.europenewss.com/wp-includes/js/comment-reply.min.js?ver=6.4.1	3.0 kB	2023-03-07	2024-07-27
Pretty URL news.europenewss.com/wp-includes/js/comment-reply.min.js?ver=6.4.1 IP 65.109.92.221 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-07-27 01:35:57 Times Seen34145 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

HTTP Transactions (30)

URL IP Response Size

zerossl.ocsp.sectigo.com/

104.18.38.233

316 B

URL
zerossl.ocsp.sectigo.com/
IP
104.18.38.233:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
316 B (316 bytes)
Hash
452fb24f1498f4dab1d443e093dc44cc
f49805d6af7a3d3a8c0b480999f347f7980809bc
9825e8a7c3a32cbecfc9f41b40ca166b9033f8d4232c5126b7f213cad4d5d889

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 06:48:49 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Sun, 03 Dec 2023 01:49:35 GMT
Expires: Sun, 10 Dec 2023 01:49:34 GMT
Etag: "f49805d6af7a3d3a8c0b480999f347f7980809bc"
Cache-Control: max-age=499844,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 83021b1b18841bfe-OSL

zerossl.ocsp.sectigo.com/

172.64.149.23

316 B

URL
zerossl.ocsp.sectigo.com/
IP
172.64.149.23:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
316 B (316 bytes)
Hash
452fb24f1498f4dab1d443e093dc44cc
f49805d6af7a3d3a8c0b480999f347f7980809bc
9825e8a7c3a32cbecfc9f41b40ca166b9033f8d4232c5126b7f213cad4d5d889

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 06:48:49 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Sun, 03 Dec 2023 01:49:35 GMT
Expires: Sun, 10 Dec 2023 01:49:34 GMT
Etag: "f49805d6af7a3d3a8c0b480999f347f7980809bc"
Cache-Control: max-age=499844,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 83021b1fd95b5695-OSL

news.europenewss.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1

65.109.92.221

200 OK

14 kB

URL GET HTTP/3
news.europenewss.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (57084)
Size
14 kB (13607 bytes)
Hash
99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.1 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:49 GMT
content-type: text/css
last-modified: Wed, 08 Nov 2023 00:20:35 GMT
etag: "1add3-654ad453-63c51694390520ca;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13607
date: Mon, 04 Dec 2023 06:48:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

news.europenewss.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17

65.109.92.221

200 OK

2.4 kB

URL GET HTTP/3
news.europenewss.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11256), with no line terminators
Size
2.4 kB (2394 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: text/css
last-modified: Tue, 29 Sep 2020 19:23:06 GMT
etag: "2bf8-5f73899a-ec4388a481bbe2e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2394
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.1

65.109.92.221

200 OK

982 B

URL GET HTTP/3
news.europenewss.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.1
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4186), with no line terminators
Size
982 B (982 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.1 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: text/css
last-modified: Sat, 08 Jun 2019 00:15:02 GMT
etag: "105a-5cfafe06-c8b3c7214c7be2d6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 982
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0

65.109.92.221

200 OK

537 B

URL GET HTTP/3
news.europenewss.com/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
537 B (537 bytes)
Hash
8f7651f15cf1ffb98472eed10c4057dd
1492fade26e31ace938ae21a0c41a840decb61b8
9d105532b10ffe64f4dd076d7dbb8784e3abfe6d1ec8fc26cfe13ec5684a408d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: text/css
last-modified: Thu, 19 Jan 2023 12:45:42 GMT
etag: "a99-63c93b76-fc83d0f02612ccc5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 537
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/style.css?ver=2.1.8

65.109.92.221

200 OK

16 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/style.css?ver=2.1.8
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (1034)
Size
16 kB (15992 bytes)
Hash
b9e1701ca80f40cd22620eddd2d48cbb
ba54644c8bb5ab336a33b6a8bc8027b47c1ed252
2226b397adfcd8fde1b5bad0d5f61b4a434702fed6bf4a13e536ec1f6dc53aab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/style.css?ver=2.1.8 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: text/css
last-modified: Thu, 19 Jan 2023 12:25:39 GMT
etag: "1967f-63c936c3-7e7613c36e9719e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 15992
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.8

65.109.92.221

200 OK

6.7 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.8
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (30837), with CRLF line terminators
Size
6.7 kB (6662 bytes)
Hash
a0e784c4ca94c271b0338dfb02055be6
88af80502c44cd52ca81ffe7dc7276b7eccb06cf
820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.8 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: text/css
last-modified: Thu, 19 Jan 2023 12:25:40 GMT
etag: "791c-63c936c4-cb51e61a0716bc88;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6662
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=34ae973733627b74a14e

65.109.92.221

200 OK

203 B

URL GET HTTP/3
news.europenewss.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=34ae973733627b74a14e
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (602), with no line terminators
Size
203 B (203 bytes)
Hash
d55f4b939d68ed652b0d9f2b5717ea21
8dafbbea2d6246bb2112ef6eaccfe9bb62ab4d85
d749579e51cf490ba27a6782bcfe07c52e44ffa8e3fbb4db7a4dded9d0d9ef29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=34ae973733627b74a14e HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: text/css
last-modified: Mon, 14 Aug 2023 13:02:25 GMT
etag: "25a-64da25e1-7f1b2dff964dcf5c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 203
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.4.1

65.109.92.221

200 OK

316 B

URL GET HTTP/3
news.europenewss.com/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.4.1
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
316 B (316 bytes)
Hash
110e06930c2043d5439adeb9999f07f5
1294fd7195b1c2652c3627fe7a57f71d447313b3
d503937452e40c21fce10346b29287ad23b221a372547f248da87ca5efb55767

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-automatic/js/main-front.js?ver=6.4.1 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 12:45:42 GMT
etag: "3f9-63c93b76-a8a8acb83356b3c4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 316
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/plugins/jetpack/css/jetpack.css?ver=12.4

65.109.92.221

200 OK

17 kB

URL GET HTTP/3
news.europenewss.com/wp-content/plugins/jetpack/css/jetpack.css?ver=12.4
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
17 kB (17295 bytes)
Hash
0947d4a620fadcb20685858f8a58c283
3cbe3dd26f2573a9974e521e81bdd7d20dac1435
1f6eb5e8892e492cabc182a081b182e89af45ce7cb4706141446f1d707c6742f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack/css/jetpack.css?ver=12.4 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: text/css
last-modified: Mon, 14 Aug 2023 13:02:18 GMT
etag: "186ca-64da25da-65ef71dffb9dd7b4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17295
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-includes/js/comment-reply.min.js?ver=6.4.1

65.109.92.221

200 OK

1.2 kB

URL GET HTTP/3
news.europenewss.com/wp-includes/js/comment-reply.min.js?ver=6.4.1
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2946)
Size
1.2 kB (1228 bytes)
Hash
492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.4.1 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Fri, 08 Apr 2022 23:37:18 GMT
etag: "ba5-6250c72e-8c02b67da21a4a9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1228
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8

65.109.92.221

200 OK

5.9 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (23954), with no line terminators
Size
5.9 kB (5908 bytes)
Hash
e41f2a4b95a648db78703b837706d18f
ab706ee38566accffda0511b9144a0c7108d4deb
0157d11106d6b70289099fd1ce1f7bea3a9dfbb46cee3994edb07ce765bb92fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 12:25:39 GMT
etag: "5d92-63c936c3-368729b4d35bc766;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5908
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

65.109.92.221

200 OK

30 kB

URL GET HTTP/3
news.europenewss.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
30 kB (29744 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 00:20:33 GMT
etag: "15601-654ad451-b972412f01e14404;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29744
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

65.109.92.221

200 OK

4.7 kB

URL GET HTTP/3
news.europenewss.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13479)
Size
4.7 kB (4678 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 00:19:51 GMT
etag: "3509-64d2dba7-1e629768472e6e67;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4678
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8

65.109.92.221

200 OK

537 B

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1567), with no line terminators
Size
537 B (537 bytes)
Hash
9bb51bfce5c3adf7131480f2dce72224
95199bf629fbf044d37388172525281697ac5952
5b84335d42b38d3122349f53b20dd6a5cb0f45d1e45e5683fd572bcdda8c04a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 12:25:39 GMT
etag: "61f-63c936c3-9f26830dcd5027ad;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 537
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8

65.109.92.221

200 OK

635 B

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (1754), with no line terminators
Size
635 B (635 bytes)
Hash
7db023435c6f3a6de71502760337a7c6
ba79e4445507d934e6be6905e67bd994a87f2332
8994924c0f3ab4474ee0a7c04417ad84933c4467cc9192fcb60b9774f15f5990

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 12:25:39 GMT
etag: "6da-63c936c3-e63251391ecd0d8f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 635
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8

65.109.92.221

200 OK

171 B

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (325), with no line terminators
Size
171 B (171 bytes)
Hash
06f019a6ff09db6b297570940eec1d5d
872efe186950ce534aad341e7030fe24f7c672dc
53f829ae556bf7011727483015d83a98bcdb4b5796eecb728827c1282c971536

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 12:25:39 GMT
etag: "145-63c936c3-1ad7f833c185460e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 171
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8

65.109.92.221

200 OK

1.0 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3042), with no line terminators
Size
1.0 kB (1018 bytes)
Hash
5f8687f238134479052763db1c08af7e
40df2fb06dc772a9ea86a5e706f43c858efea3e5
aeef31c70dd1e009fba6965ac0510518bc1fc7c99323dc712b204e9dc74d747f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 12:25:39 GMT
etag: "be2-63c936c3-7ee77771bd5cd93f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1018
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.2.3

65.109.92.221

200 OK

918 B

URL GET HTTP/3
news.europenewss.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.2.3
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
918 B (918 bytes)
Hash
b27718aff74affd83d576672659ea188
06fb5d122016c11a5e404cdf878147dee60560c5
0891804a56327bacae315d5e5281bee36c729cabfe22697a28083eeb39eb8608

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.2.3 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 12:47:12 GMT
etag: "ef2-63c93bd0-5915fb0dda67d692;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 918
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed

news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff

65.109.92.221

200 OK

80 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 80196, version 3.0\012- data
Size
80 kB (80196 bytes)
Hash
8d5902c75e6f6373b10b9a5aaad64821
cf35548f4f6a03fc63544a78703e61e00fae45a9
01860d2273448228ae1e9f7b7150e82bdcf98896938cccd44815f4c1c856204c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/wp-content/themes/colormag/style.css?ver=2.1.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/x-font-woff
last-modified: Thu, 19 Jan 2023 12:25:40 GMT
etag: "13944-63c936c4-85d283981800ee68;;;"
accept-ranges: bytes
content-length: 80196
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed
vary: User-Agent

news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff

65.109.92.221

200 OK

80 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 80280, version 3.0\012- data
Size
80 kB (80280 bytes)
Hash
dec1ef467e5034d2562db22cf413034a
63eecb1133924bb8ec787a509a1e9e9afe8fb5bc
543ceb846af6fbfff9fc58f1e53994f3f191116c51ca95de3ce75d675c50ea66

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/wp-content/themes/colormag/style.css?ver=2.1.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/x-font-woff
last-modified: Thu, 19 Jan 2023 12:25:40 GMT
etag: "13998-63c936c4-40b1bf16ffb26ca;;;"
accept-ranges: bytes
content-length: 80280
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed
vary: User-Agent

news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-SemiBold.woff

65.109.92.221

200 OK

80 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-SemiBold.woff
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 80184, version 3.0\012- data
Size
80 kB (80184 bytes)
Hash
0f817666eeb799ff48de7d1df0102de5
ecc97ca90c38fd5d216dc2301b4cc403c9d590f9
e401b72553ea85689b6a2ee010d65bd1d41bd99d765ca892c49589e9a170634b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/assets/fonts/OpenSans-SemiBold.woff HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/wp-content/themes/colormag/style.css?ver=2.1.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/x-font-woff
last-modified: Thu, 19 Jan 2023 12:25:40 GMT
etag: "13938-63c936c4-643c652a41f7e715;;;"
accept-ranges: bytes
content-length: 80184
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed
vary: User-Agent

news.europenewss.com/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0

65.109.92.221

200 OK

77 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Mon, 11 Dec 2023 06:48:50 GMT
content-type: font/woff2
last-modified: Thu, 19 Jan 2023 12:25:40 GMT
etag: "12d68-63c936c4-824fb04c40d4b07a;;;"
accept-ranges: bytes
content-length: 77160
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed
vary: User-Agent

news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff

65.109.92.221

200 OK

78 kB

URL GET HTTP/3
news.europenewss.com/wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 78156, version 3.0\012- data
Size
78 kB (78156 bytes)
Hash
1a592f9655ac68db7ba196134e938d74
8edc1a005636480304808fd9393c49ecae3d7e23
a1434cb9eee1f618cfa38f76759c919e606679bb2beb2cadd62964361c43a741

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/wp-content/themes/colormag/style.css?ver=2.1.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/x-font-woff
last-modified: Thu, 19 Jan 2023 12:25:40 GMT
etag: "1314c-63c936c4-5cf66eda8b901b9c;;;"
accept-ranges: bytes
content-length: 78156
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed
vary: User-Agent

pixel.wp.com/g.gif?v=ext&blog=214486384&post=646545&tz=0&srv=news.europenewss.com&j=1%3A12.4&host=news.europenewss.com&ref=&fcp=0&rand=0.4821361957702819

192.0.76.3

200 OK

50 B

URL GET HTTP/2
pixel.wp.com/g.gif?v=ext&blog=214486384&post=646545&tz=0&srv=news.europenewss.com&j=1%3A12.4&host=news.europenewss.com&ref=&fcp=0&rand=0.4821361957702819
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=214486384&post=646545&tz=0&srv=news.europenewss.com&j=1%3A12.4&host=news.europenewss.com&ref=&fcp=0&rand=0.4821361957702819 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 06:48:50 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

news.europenewss.com/favicon.ico

65.109.92.221

404 Not Found

1.2 kB

URL GET HTTP/3
news.europenewss.com/favicon.ico
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Mon, 04 Dec 2023 06:48:50 GMT
server: LiteSpeed
vary: User-Agent

stats.wp.com/e-202349.js

192.0.76.3

200 OK

6.9 kB

URL GET HTTP/2
stats.wp.com/e-202349.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7100), with no line terminators
Size
6.9 kB (6931 bytes)
Hash
530c085c7457919e6f6a76c67b3419ad
4c4929f20e73b6f41fe3474669bfea17b36fe49d
5db8b724469197930b66337c5a9ff7301c4ad5a52e7fc3134b4a568f45199aed

HTTP Headers

GET /e-202349.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 06:48:50 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/13576-1684461103136.7104
content-encoding: br
expires: Sat, 30 Nov 2024 21:59:05 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

images.wsj.net/im-893480/social

54.230.111.30

200 OK

223 kB

URL GET HTTP/2
images.wsj.net/im-893480/social
IP
54.230.111.30:443
ASN
#16509 AMAZON-02

Requested by
https://news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
Certificate
IssuerAmazon
Subjectimages.wsj.net
FingerprintF7:12:4A:86:0C:71:0F:D5:D4:09:60:7B:86:68:0D:75:7C:4C:8C:1A
ValiditySun, 24 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=2250, bps=194, PhotometricIntepretation=RGB, description=DCIM\100MEDIA\DJI_0049.JPG, width=4000], baseline, precision 8, 1280x640, components 3\012- data
Size
223 kB (223266 bytes)
Hash
a58297ad22fe326910754cd98707cf0c
f6b40244386e7f4ab1948e22996211cb285da200
4ae4b3408e426fa68bba08baf31d42783cb156dc1d057a85dee9450af280c663

HTTP Headers

GET /im-893480/social HTTP/1.1
Host: images.wsj.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.europenewss.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 30 Nov 2023 02:00:20 GMT
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cache-control: public, max-age=6048800
imagepipeline: 20231129-203225-e9a1c9d5-f7f7-408e-b0bd-92fbbff4e58b-wsj
x-powered-by: Image Pipeline
edge-cache-tag: nrtools.im.prod.im-893480,nrtools.im.prod.im-893480_1280x640
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HmXaS8ivBrvN1tHVGtWxqOpVRdqYHisxkGV4ROCJYEUB_1ihyvnA6w==
age: 362910
X-Firefox-Spdy: h2

news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/

65.109.92.221

200 OK

116 kB

URL User Request GET HTTP/2
news.europenewss.com/how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/
IP
65.109.92.221:443
ASN
#24940 Hetzner Online GmbH

Certificate
IssuerZeroSSL
Subjectnews.europenewss.com
Fingerprint87:0A:BC:14:47:36:03:B2:3F:86:2A:B8:D3:7E:89:C3:16:42:8B:DD
ValiditySun, 26 Nov 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type

Size
116 kB (116185 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /how-did-i-end-up-in-indiana-welcome-to-the-internets-favorite-small-city/ HTTP/1.1
Host: news.europenewss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
x-pingback: https://news.europenewss.com/xmlrpc.php
link: <https://news.europenewss.com/wp-json/>; rel="https://api.w.org/", <https://news.europenewss.com/wp-json/wp/v2/posts/646545>; rel="alternate"; type="application/json", <https://wp.me/pevXHO-2Ic9>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Mon, 04 Dec 2023 06:48:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by