r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 460af93786e1eaa666f135e6c3fdc634
bc8aeba36225c79718f5de73d79928fe817c5490
471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11481
Expires: Sun, 18 Dec 2022 18:34:09 GMT
Date: Sun, 18 Dec 2022 15:22:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4cbb89840b57466fcbc0b31305c9dc47
c2c08a7a243a3f7972e8068c448488cac6d2519f
5f871ffd142470f132fed1c93f5f1a7fe6a5ecc3b4311d3d47555fce1d9a35f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F871FFD142470F132FED1C93F5F1A7FE6A5ECC3B4311D3D47555FCE1D9A35F1"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2730
Expires: Sun, 18 Dec 2022 16:08:18 GMT
Date: Sun, 18 Dec 2022 15:22:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 18 Dec 2022 14:34:18 GMT
content-type: application/json
age: 2910
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9369
Expires: Sun, 18 Dec 2022 17:58:57 GMT
Date: Sun, 18 Dec 2022 15:22:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AfvCMmduhj3qfEkj57pHDt74R2C41LeDaZ6eJ80mTlu5d4o8lzlHVfeI+hBcoW7B0WmN5O28vWw=
x-amz-request-id: GZ1B7CMVBP70PJV1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 18 Dec 2022 14:54:09 GMT
age: 1719
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 15:22:48 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 18 Dec 2022 15:08:00 GMT
age: 888
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bc27cdcd6c42d7f8eece6c074bc452f
ff1234b58f7381f51f9082c1ef4894b1ac5700ff
672fc3b7ba7ee7a8b376c73a86a5bab00b1a1aead54c3ca64c0bff83d831348e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4204
Cache-Control: max-age=154446
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:49 GMT
Etag: "639ed82b-1d7"
Expires: Tue, 20 Dec 2022 10:16:55 GMT
Last-Modified: Sun, 18 Dec 2022 09:06:51 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
newartexaminer.net/tag/karl-wirsum
143.95.80.138301 Moved Permanently 0 B URL HTTP/1.1 newartexaminer.net/tag/karl-wirsum
IP 143.95.80.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /tag/karl-wirsum HTTP/1.1
Host: newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 18 Dec 2022 15:22:48 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730; expires=Sun, 18-Dec-2022 21:22:48 GMT; Max-Age=21600; path=/; domain=newartexaminer.net; HttpOnly
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.newartexaminer.net/tag/karl-wirsum/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8jGJ9QXW8GatHkLt0R4M1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FJT4Yc0PCEIMCDDHDwaULQ92NWs=
www.newartexaminer.net/tag/karl-wirsum/
143.95.80.138200 OK 22 kB URL HTTP/1.1 www.newartexaminer.net/tag/karl-wirsum/
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, CR, LF line terminators
Hash 798c56a0db5cee4afe45a3766e775352
0ecb9b9f48f4978bce7b5f0c765900a975f0716c
e01265efce550fde8ba733c13269c3616dcda25c4f557c5b4a0d071f35505318
Analyzer Verdict Alert fortinet Malware
GET /tag/karl-wirsum/ HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 15:22:49 GMT
Server: Apache
Cache-Control: no-cache
Content-Encoding: gzip
WPO-Cache-Status: cached
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 18 Dec 2022 15:22:42 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1
143.95.80.138302 Found 294 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c5e60f9ff460f5ff345bf6cd5a35220e
cf5000b8876f4a4cd528f06b56c2d606480674de
94948a16d04969cf8bbf449cec12ebe57c52142c0d4bedc4b556d95c955ef7d9
GET /wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1
Content-Length: 294
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b09c5fd392d9d40a99ab4c70e59fd24e
40e39676ca8052fd8b9eab501750f0011737f507
8c2b60b0ec0a8121d5c5a8dda2ec1a57b923efe10246386262f359f6a458cdcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.newartexaminer.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
143.95.80.138302 Found 273 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b2e491ab4d1d29199e5c14216b045cdc
6280df3bf4381324de9d90a7a34a1a1ae084eb4d
c38695c7b8b3aab4a430c10cec9d9bcd19ddf30b18733314d9761d36d8f9f58b
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
Content-Length: 273
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
143.95.80.138302 Found 276 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 74cfbbf53c46d6d42e276753200e4a72
97ffec0bc02b3e1e7895ca37b32fd7afb034d53f
c8c527afba64237879c3051706e8a0a6b3225ef2be11541030ad71259cff2dbb
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
Content-Length: 276
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
143.95.80.138302 Found 287 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2cccee7eade3e41354b972eea4611bdb
0a7416b414ef880c77feacfc836c047e51745cd9
62f6067a61f1e30cfa6231417f5f93e18a2282ac39706e5024c23d3fcd6a3170
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Content-Length: 287
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
143.95.80.138302 Found 317 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d083e8ae5f29cae752be8dcb122eb6c8
b756c0ae7101ad676c7198fdf4c2cc718d9f76a3
67a740df71d012a5691a058407c0b27d0173fbf31bd5703c30c0e7fda11e5484
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
Content-Length: 317
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
143.95.80.138302 Found 309 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a00d199c3a4a2f79ac31ad33f928e2
1e84e39c3471c4a07b35d6f013b773ada9f6bb79
6022e0b9c6e682b5582dc310b79c664cc7876174282a2364cff81f93c7037de3
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
Content-Length: 309
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/css/classic-themes.min.css?ver=1
143.95.80.138302 Found 259 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/css/classic-themes.min.css?ver=1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 524c0819b9583e068f57cc418d50ff1e
5200c54a218eb479772b31dcb5c4adc030d0178c
e430596315f30dc90a30a47780313154b697d03a5237976d9f021bd545e3b478
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/css/classic-themes.min.css?ver=1
Content-Length: 259
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.0
143.95.80.138302 Found 289 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 95b5ba96a83ff786ce1bdbad06f3a31c
a883085460fbb3272574da22dcf83ee1684837f3
00d4a57e17734af03adcdd1a2576452b35433d84707f8db481a1a4be865d6879
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.0
Content-Length: 289
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.0
143.95.80.138302 Found 282 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4d895582f2d0a7ce29fbeea8c18815e2
6e8ab549e5fc03ec97b885eae2a714d7c2ef8f24
68eb782ed71343b1508f1bbe837a74fd49e8b304f5b5b65d27102b33e5011c2a
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.0
Content-Length: 282
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1
143.95.80.138302 Found 293 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6d0e6d8b9418665d69e23a948f0f00cb
b7b1a72f15a7303d800a20ccf24116aa3eb64922
0b011aa58c0a396107ef6207b9175433c9efc58506744537ecd58577bac7ed1a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1
Content-Length: 293
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1
143.95.80.138302 Found 296 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6aac299ed68a07895e94c89b669c5312
0d88b3120d9025e36adbd0bf81fb9af8ac9115eb
afb160255243ad8e0dc2723cd7f1253d8f76de787407fdb42b4d7058794224d8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1
Content-Length: 296
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1
143.95.80.138302 Found 294 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a2de8464ca0c96198fdc06ec6e24caa9
83a56d132046b33fe7934f9c488e9e309ea4880e
9151d11e4157e92bb4dcfef8a2bee814309130374752bf61daabff55a7fa5c61
GET /wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1
Content-Length: 294
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1
143.95.80.138302 Found 298 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d1abe7b94e82ab6c5835a0e3312c9341
13332966a27e656bd99c78cfebda06afd38ebf37
f8247e8987b17853f93429bf32a5006e63b10b35677e3153fe0d40767e5e2904
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1
Content-Length: 298
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1
143.95.80.138302 Found 273 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fede25015fe705fbb731e966a2cd4959
1806d6e9c4a87514f63b51972154ca3c276b92d3
7714e0d058eeaf9377fb2a1d1df0b89dce1294b32a9821ce6b0255406b0e54cf
GET /wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1
Content-Length: 273
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/style.css?ver=6.1.1
143.95.80.138302 Found 267 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/style.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d81683c2452a0303a0ae14a48313f284
67990ce11ec6a5bb806b7622f66915b2705f2374
5f8590e1c44e51fbfacbbc4621b24bfca209845a52f5b0067aba35ce0a43c3a2
GET /wp-content/themes/chromenews-pro/style.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/style.css?ver=6.1.1
Content-Length: 267
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
143.95.80.138302 Found 263 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ac50b89b64cfe90a961f21ae5561fe48
403c588cf8b939eaab296222f8de973ae4caf930
3bdac16d3ac0020f5342789597416111bc0c5309ee7a2927ecc2cff6f97b8ab8
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
Content-Length: 263
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1
143.95.80.138302 Found 285 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 906c89140a9de2385553b62ee60a4a86
5d11336faeb4521637f9e55de502afb20cff9896
7b22721fcf5998f4faaa4403fdc459754547b7268cb5c7abbbcdfcec35dfb75f
GET /wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1
Content-Length: 285
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1
143.95.80.138302 Found 276 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dfe487fb49f21f30957fdd89a9f64be5
09b0f2e79e0790fe2fb8378523aeae4b426f1d03
4102a7a76e3482d33ff399218531a9c5c194a8d13d87cf5b945d566bee210047
GET /wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1
Content-Length: 276
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1
143.95.80.138302 Found 281 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 95c4520110bdc8d8739f7dd420d522d5
09b4156a42ff61392b31f75fb7b3f2902b62953a
8b2036376dffeba302947396f992eeab9b7071ec9381db8f08a6ebc13f6c4901
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1
Content-Length: 281
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fonts.googleapis.com/css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext
142.250.74.74200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext
IP 142.250.74.74:0
Hash ab31b34982ac015cec3024dca97c8b2d
b7b49c2270a7678ef382e2617ba3623fbe823aa2
d58eb6fc9f2d6f66c0296bfc34132814cdf9bc614899eca8e3e93c6097d54988
GET /css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Dec 2022 15:22:50 GMT
date: Sun, 18 Dec 2022 15:22:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
143.95.80.138302 Found 277 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9e286d0b53a387a6a82ef8cc23130cae
1bf0ce0f26c874776091de0d9c57d59c6ebc3f2f
bc77674ac5c55761f94bbf8972348db2168620575a92e8611a09cb25ee3e1f09
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
Content-Length: 277
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198
143.95.80.138302 Found 306 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6da821567ee59422cb35117adf6b7be4
4e03d6194ba91e3e232743ed998138dcef97ea6c
ebc1f5df69dbb6ed2bf08acb425ec267b33b8b47431f3a5aadfd13a956960453
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198
Content-Length: 306
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
143.95.80.138302 Found 266 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8ec290bd03ef7a4a89508d143fa48f0c
2c53da885074a25ac0a143456df6077af714fb51
9578690b7b496f90b1484cdf68a5dc86e6a796bc2be502cb4bf15680dd193b3e
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.6 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
Content-Length: 266
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
143.95.80.138302 Found 260 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash be8ad928c5d763655e6855fb0296bcf8
d21ccaa33453af68de945c5dc26bdc1c6b31f9ce
7dea9d8f3b708f70f6fe99feac35ec5eab5dad0d61f57270e6447d1176fa75e7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
Content-Length: 260
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
143.95.80.138302 Found 268 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ab7d06dcd12f56305b60d9f9e7a3ecbb
c3b6811a001814f9f690add861899384e9ab0c73
64c9bf04d379e9a48984701f04c27fde04d92e93073bf8b35ff7c89fc01e4a13
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
Content-Length: 268
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1
143.95.80.138302 Found 289 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2e4c6fb43812eff1a34fba69cee70fdf
74f24768464c0719bd63f836fb595095a050b590
a465cd89e33a39d61fc2c5239c0d9184b5f11b8605e12d6ae72abb673aa6e70a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1
Content-Length: 289
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a6b3dca6779bdcbf797d790cda815b58
410001d56583962c01ec1be983ab25de88faef75
a8fd8101d09a9a48a8aebf2cfd084a93ecd46a1fa291330b3f5c8739412d6aa1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 15:22:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 15 Dec 2022 14:29:38 GMT
Expires: Thu, 22 Dec 2022 14:29:37 GMT
Etag: "410001d56583962c01ec1be983ab25de88faef75"
Cache-Control: max-age=341806,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b8e573a9f70b51-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4220
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 15:22:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4220
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 15:22:50 GMT
Connection: keep-alive
www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
143.95.80.138302 Found 292 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1c897d135d429fc5a137ea27354f5afe
18b556d20bae67678acd3cdc110f27a5c4e9e93b
dcd37e8d62b40ba361b4d0298d0d14e3c88254591dc39eb672ce7ea5037967b5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
Content-Length: 292
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1
143.95.80.138302 Found 279 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ef0bac6e1ab634c36ba6c0b6b7408d35
de4f8ab1da1be35f3b5237915aa773368916d3bd
f5a11dad131971ff61da98514ec6b24f3186a5b12a972d969a1939fa748f8c94
GET /wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1
Content-Length: 279
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 63944
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 578392bee48563d778885698790a124b
597892da925c3a363878e81ff02032a316303512
d30fe2470e1f63c5249fd42d7cd804bbf326cf9a703c61e31b5322ebdb26fca6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9925
x-amzn-requestid: 15eb2112-b947-458a-8544-51bac721773d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2k9HNjIAMFTTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e37b9-7c5b94866d266af252f133b3;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:42:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vffD2KxBpOeR3uM-GHLzYmIlBCBR4K6R1ScupFeM7PQEsZSqHi_eZQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:54:10 GMT
age: 62920
etag: "597892da925c3a363878e81ff02032a316303512"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F674a9d4b-a924-4e51-a3c5-bb301e0b7ed5.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F674a9d4b-a924-4e51-a3c5-bb301e0b7ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97c6ae61df47375ed2a71e6551fa0848
dd39c349fb102a382c860f7094643aec6887e238
cab3f3183edba50cf856000c247e625d31c136c3ff0e552341db8a2fc5bc681c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F674a9d4b-a924-4e51-a3c5-bb301e0b7ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9611
x-amzn-requestid: 28a9e04c-352d-4492-aea9-84d0c1d6a13f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11TEGhIAMF7CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3688-4b8d904e0c57d3344826e057;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: osJ8RL43p42uCTC4seR3_1Sa9088nrBtcTv_a1iFsnsKh1t8zXHWag==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:12 GMT
age: 63938
etag: "dd39c349fb102a382c860f7094643aec6887e238"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/imagesloaded.min.js?ver=4.1.4
143.95.80.138302 Found 259 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0174984181ef060cbd29d9d2077e6d17
7fd1ca276bd51812d7c761997451ce51d937e1a5
13adbc292efb8a5bf5f9e3821b906d6fd0850d7da09c84116b83b89109e77e7d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/imagesloaded.min.js?ver=4.1.4
Content-Length: 259
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed374d0c34e8b2e15f08a6479a4f45e7
5db9e59699048998f0685e940640eae19ef11c8e
9933854830be796a87cfe44b6b8336294e2d3dbbe3205f267720aca6968c3a21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12125
x-amzn-requestid: e44faa15-1dfd-4bc0-bdfb-307c3de2755d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2QPFZAIAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3734-33d636210a1e24742ee71187;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DmeWRYIlUMCR8Nds0-n0a9ju0ySR7ZuTAS82Lu8sZxPXQpBJkqzvww==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:52:21 GMT
age: 63029
etag: "5db9e59699048998f0685e940640eae19ef11c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12c4c2232b6d09e9085f0214b3260c1e
a24f8e949a2f2a973fe2dd5af994cd970d37f13a
000475ed7d0aab9a7dab3e25f0a29f82552739fea99f98cbf5131282d0db7d63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10670
x-amzn-requestid: d72e1904-caf4-4c72-a811-d1bde023f4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11JGCsIAMFRDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3687-7789040d71253d00378f9162;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8qqSQbj22k16ApKTT8y5BQItInb8EjZuACdWcsW_FnMysvnDADbLxQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:11 GMT
age: 63939
etag: "a24f8e949a2f2a973fe2dd5af994cd970d37f13a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada04738696f861648635c9ba98841e4
ce644cd4349d88aa7c24b2503b0b18b444061639
e5cee777efbf1d8a0f95f6cce71199e5f016a91f90cf0afe38bc86654b9d730d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8696
x-amzn-requestid: c897aeed-a082-46a1-965f-39e8c763cb05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10ZH3jIAMF0gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-548ac80840737a20743980f5;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JecluZu8ExMmP-UHM8QbK-bjm_yqULU1tl2QQDfKMea8NHM6y2JI7g==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 63944
etag: "ce644cd4349d88aa7c24b2503b0b18b444061639"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4220
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 15:22:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4220
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 15:22:50 GMT
Connection: keep-alive
www.newartexaminer.net/wp-includes/js/masonry.min.js?ver=4.2.2
143.95.80.138302 Found 254 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/masonry.min.js?ver=4.2.2
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c44232a7b3679c9cfca1d6567cebf240
a676f99a00caa8f02e88deff4715e11045fb1d4a
d20825481961078154dfd8ce8c9d5a11d7de666f0320cda4d5a0f35f354d4c20
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/masonry.min.js?ver=4.2.2
Content-Length: 254
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4220
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 15:22:50 GMT
Connection: keep-alive
www.newartexaminer.net/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
143.95.80.138302 Found 269 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 03e2f09f21e46396f213e7b0667e8853
8585e677c1c123de9f65ca1ef794a7cbc9a65032
eb0ad660344f5184235bd7baaf2a00ee5b734ffe9269b9247fe174f5e2cdf850
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
Content-Length: 269
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1
143.95.80.138302 Found 278 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fa4f42af370e70a2e7954d29b573fec0
78b69c27317a760fd1132c0ceea260673b895ea7
08f15c3208bd540ba01d028305fbc661b8162884bee93a8cae1e2276f21fc49f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1
Content-Length: 278
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
stats.wp.com/s-202250.js
192.0.76.3200 OK 4.0 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (9364), with no line terminators
Hash 136e02ad2bfb916314331d1bbac3bcad
dbc2a1aa94dfa2767060aaeefbf1d50fd8a8ab23
beb22bced0c92267f53d688ef6908468e31eaea6f076f20382ba104e7702567b
GET /s-202250.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 15:22:50 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-2494"
content-encoding: br
expires: Mon, 11 Dec 2023 12:22:39 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.0
143.95.80.138200 OK 3.1 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.0
IP 143.95.80.138:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 97f3e7860b3e0d99f3c0327b0045363a
885af5049143e765b7fd0f3a0a860613b05d12d1
ff05d291dd422f8bee80e816eb1480c67fb3e0d6071bebd8f04c86de87a70080
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3086
content-type: text/css
date: Sun, 18 Dec 2022 15:22:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1
143.95.80.138302 Found 273 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 177009a53b81e1ed1705eee8b05dc427
74a027c192f04582b2bcd61e33cc6dbabb7f4b13
5440587fab94ecec9587aeeb8ad01f7525bfd7b9fba6b90a272bfcb9bdafc4d6
GET /wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1
Content-Length: 273
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1
143.95.80.138302 Found 277 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 903fa9a0677eacf02e7da8ae9f5f4ffb
40ab1fb852d3f7ff98f539db9e68b5bf9f3c2141
2abe0485735c9e697d9264bf4008e90c175a9b9a32171e516aefc981b2f20344
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1
Content-Length: 277
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1
143.95.80.138302 Found 279 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ec29d6e664e87e2ad9f21ae0cbb0d2a9
a0cf2713f595a639743469fe410fc5cbf4060bff
62b5818191aab5fa25a470b1854f4ed47d3a85baa8249ab8dc8278bf0820c7f1
GET /wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1
Content-Length: 279
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
143.95.80.138403 Forbidden 6.1 kB URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (481)
Hash 080745182ec64ad1eef75e561abcb8f1
75d21e720d10ef11dde6be4251a426e45fa85485
589a46931de5754e4f14601d4348b79a9d658d832ae75e0f7a55732cbaf53fd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 403 Forbidden
Date: Sun, 18 Dec 2022 15:22:50 GMT
Server: Apache
Last-Modified: Wed, 29 Sep 2021 08:01:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6083
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.0
143.95.80.138302 Found 293 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9d4422ecd289397c1c4c946f24a9ea2b
954d57388d43adbb05ecab91f8f849b775e8b29c
a91091c88b3925bdf56f7ed64f138f6a88a85f676b9f103bc089e5a9df7a5689
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.0
Content-Length: 293
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.0
143.95.80.138302 Found 311 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 14ec99b4be04240fc3fad2ad139cbe00
0047a3536dddd42447a1984bbfcd64665d59fe6b
5f4ec90549eaaabba88188bff36fb7bb2bf13499cc5f70704f34ac80167e784b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.0
Content-Length: 311
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1
143.95.80.138200 OK 13 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Sun, 18 Dec 2022 15:22:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1
143.95.80.138200 OK 2.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1
IP 143.95.80.138:0
Hash 5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2190
content-type: text/css
date: Sun, 18 Dec 2022 15:22:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1
143.95.80.138200 OK 440 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1
IP 143.95.80.138:0
Hash 3f87dda45a8d385aa21e4ec08eaf1661
1088a95c2735ed46880fa118520a6481cb022940
09a1954fafdecb132f2d2bcfd7dca277a394ac10d2cfd302378c35c10269ad0c
GET /wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 440
content-type: text/css
date: Sun, 18 Dec 2022 15:22:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.0
143.95.80.138200 OK 13 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.0
IP 143.95.80.138:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 506114e76608d2cb13e2ae2bcf067c7e
7ea05a51a05343a1b32e7c886add36971a788133
0b16be7c9d35f598d1cb5b6c9a42088aac3245180430e6583984f03b1ff16bd6
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13258
content-type: text/css
date: Sun, 18 Dec 2022 15:22:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.0
143.95.80.138302 Found 301 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 31e3e10fc87fc96ae7beab1c5f2775b5
af2cd28819c3b98c2a26759c7482bcafe5cb8ccb
946c5b5f3ef84242618e22d726d13ee4bc22f7c4fd95fc44ec7a2a9f915f9f81
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.0
Content-Length: 301
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.0
143.95.80.138302 Found 293 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8918689866dbfd3ee2e7b8488caed330
4e44c109ead15c8273b17f189d60eb37c134989d
f74b49a5a65aaaa7aacb0b6138e96cb3c031477ec395a7a5642e50d6e259e72e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.0
Content-Length: 293
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.0
143.95.80.138302 Found 296 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 25038a66289475f450ec616a1fc70a69
552f028f5f7ea55f9d5df13b3e5d39e62c5866fb
e52375f21ad4d5f58175c416f5d75b4b78eab49340b7db3803e2f6621384ae13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.0
Content-Length: 296
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.0
143.95.80.138302 Found 309 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0138a5277ab96a8f0c419ebda2816811
b167d83c1dd2c5f34cded2d7d58ccc797de0755b
9d57bd5c9842d7b5f4d0a566031fbc3ea7b823fdeba799234b6a7acf75c23af0
GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.0
Content-Length: 309
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215
143.95.80.138302 Found 284 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0229e7ad0c488c1f67ffaae1ce50ca17
f5c6f2927b4f1c68d8a41eb23c7833ea05f3a24f
d9b8feddae99e1e08beff2a9d61a4878e591b75a0418a45ffaa7fa03f6725b64
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215
Content-Length: 284
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215
143.95.80.138302 Found 277 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3debd2804ee8cf8b861d1386199a23cc
2a3d078a5892d78ea41c577de56877897f80e85a
63f04e319ea620470a0313ad83cc3ef364767bcf9919e7d804ecfc0658ac40b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215
Content-Length: 277
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215
143.95.80.138302 Found 286 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bd3ff8887bddec96eee293ef06ab6b70
fcdb108206c8bedb860b070c281fea21f9dbb29b
89c36a67142025a20517af6326581dfa8c5f1b7ced71abeddef44bc3a169c52e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215
Content-Length: 286
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1
143.95.80.138302 Found 294 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bfb0806f23ac6b6a1c003fd4f455d967
0a814051c9416ce5ab45154cf767ac31de31a242
1511a13f43a389639356133f6d49614088aedda0679a394324efd95f0bbb4648
GET /wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1
Content-Length: 294
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1
143.95.80.138302 Found 291 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e1acf8ec90b0566187555f934a037dd8
031e70aa819abbd8177c16853c3aa478b30135e6
ddfe9a4a20cc38d93a9bb57867c43f2ed1e2354c4ea28936794050c8f13ecb8e
GET /wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1
Content-Length: 291
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
143.95.80.138302 Found 308 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 84e8b35556c32733868a4d6540a6da0e
d2ebd36e02cb306aff380ce613a1ca5d1396208a
9931b9335073d262de863c1b495335a21832d5de8eb17f9b21b7beb108b565e0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
Content-Length: 308
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1
143.95.80.138302 Found 310 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fe214e6d3b94dfdb5c600173bcf45120
109e949ea38c4f2f863e5c9191e6cfcec5f44891
ccec80e53dabdf84b9a17291e82cb1ba24503d83043c352fadddddd9deaa301c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1
Content-Length: 310
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1
143.95.80.138302 Found 290 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7b8509771f00436eedd0bed0837d803d
0d6e20f9f77b52d922ba02e9b5c6e068049bbc72
75747720d08e597a6ef951746f6f0c100a6db289bb920b0efcde8154cc941f6d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1
Content-Length: 290
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
143.95.80.138200 OK 299 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
IP 143.95.80.138:0
Hash 1e34ceaa9a4c96c3499483f5fe818671
55a92f1196d0155e2bf0632f0905b5b8000f5ad7
9738e8e5222b5802082be7a77e56ad9fdee06718da410f356504184fd08b56bf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Nov 2022 07:58:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 299
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1
143.95.80.138200 OK 564 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1
IP 143.95.80.138:0
Hash 52dc6a8e85abdf73203fdae4e4b6f9fd
d19e874bdab0b560891082c591b33b7a481149f7
a6ed9df694f9885f6959a20b8aa2090235427dd579b89eed311fbad2d70cfce7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 564
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1
143.95.80.138200 OK 6.6 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1
IP 143.95.80.138:0
Hash 5b7a3b1c854dcfff603901e72b9ff63e
db47a6756f6010af5863797aa48db30446af2d96
730dfcce032719acc5d1f0ab03165949f31a231ac7471e2b55635b0b2337d0f7
GET /wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6561
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
143.95.80.138200 OK 6.0 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (11126)
Hash db78b857e1ff11330ff1cd1d3ad8dce6
557385dd3c12e7710fbf509366461a5791907edd
f208690329ec827d1b605a882df5625952b80f17c28870b3b03984d01a539c90
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5989
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
143.95.80.138200 OK 1.3 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1298
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198
143.95.80.138200 OK 12 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198
IP 143.95.80.138:0
File type ASCII text, with very long lines (53538), with no line terminators
Hash 8d812e2a2f416754e36e3ac4445faa8f
fda9b9a736c253e8c14f38bb7d0b7e88a40214a2
6e3370b8614cb5e7e982288482c228c0e3b55e84dd3002e2c2a9343795de82f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11590
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
143.95.80.138200 OK 3.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash a6099ee677b6d930b6b878cf0cb08422
a2eb69454196d4250d624d25aaec587e97686642
755acd6dc98e63baff6d8b105b1bcaf63b79f935381fb3f32a79dace7faae0ac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2985
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1
143.95.80.138200 OK 6.4 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1
IP 143.95.80.138:0
Hash cd4783942fbe8d66614e035abeefe2fc
8540140a45035d2889e6a9ab4a3e081853a31840
5fa2614d6f009cd70eaf3a3818261acf4dd118d9c05c497ef686b729ea14e3b2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6356
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
143.95.80.138200 OK 3.2 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 143.95.80.138:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3239
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/imagesloaded.min.js?ver=4.1.4
143.95.80.138200 OK 3.5 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 143.95.80.138:0
File type ASCII text, with very long lines (5499)
Hash 6c742a5f0977ee6d71c30ab689ce6667
48ebfee62ba55bc2afa998afa4e6f39f6ae9a566
9723ea8a25d49765a83022d733e010d058b8322d17976e436885aab782f02cab
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3461
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
143.95.80.138200 OK 2.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
IP 143.95.80.138:0
File type ASCII text, with very long lines (2203)
Hash 15d8507ec275c1e0a742edbbd30f8abf
2ce02da11216741c3a4d9211f733e9e08fb4080a
5ab7071ba6e6fa64494528fb3d422690cc2783d75c95dc47825c663515e4991b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2233
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
143.95.80.138200 OK 2.1 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 143.95.80.138:0
File type ASCII text, with very long lines (1648)
Hash 43ba91729c8e1b82b1c8507fed68238d
61d3f5fc2b1e61e01a8e011182d15fc5873d9756
1d1254d666fb9c4a9692bc62acaadf8a2b563e031452891b0416eebb6fcf03db
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2067
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1
143.95.80.138302 Found 274 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e1907f14f85122191e160a505f4f4473
fe21662124ea58f4acd6c5eabf4fccaa1a5145c1
82171eba349998fb8ed228825f67f6f5c20497c37711c70a61a2875c65930b22
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1
Content-Length: 274
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/pagination-script.js?ver=6.1.1
143.95.80.138302 Found 285 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/pagination-script.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e7f0b377740ed243dbc7d0d5997f2c6c
9aeb11d82a5a8d49f2df00d8fb599146c0159fa5
0022aa83b4f66ff4764b5d0d784fe225c46f905b69386d40a170f171c98cdc18
GET /wp-content/themes/chromenews-pro/assets/pagination-script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/pagination-script.js?ver=6.1.1
Content-Length: 285
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1
143.95.80.138302 Found 311 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ac384d0590d12631d2923ff97e16efbe
f5d341d548f8f5c2942a99ac6787be4cfaef6767
4a7d59b833d1bc78b0555b57d1759955558344e2181b29f4d403d9a02bfd68e3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1
Content-Length: 311
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1
143.95.80.138302 Found 280 B URL HTTP/1.1 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 340f0990e4eb8c06cd1f69671ab60209
526c3d10dfbd770dd725b1b7c2e0fb5f23b31ae1
fa15696f6878eec76de7d1a6262a5c313778ed6273946cc9eb4199b91f23f993
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1
Content-Length: 280
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
143.95.80.138302 Found 284 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 388dc615cc800190e37d321e3dd1deef
7d973d44a348910e72a301f75182f20699e0f2a6
10c138d2c115944f827b8ceacbc776b95c0195985ce7346b939a0b34b03deea1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
Content-Length: 284
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
143.95.80.138302 Found 280 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c8214bd6da967b76f2127d8aa23934c4
c580d975a3c49b35c44a6a13c556395b4a772bbb
d74bdad0552ca9626d467179d319edd7d17aa3838fa9f780d23d8fa35e36fa2e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
Content-Length: 280
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1
143.95.80.138200 OK 2.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (1394)
Hash 3775ad9007b26796b38aa68a14dee3d4
ee286755529979a9e232393eec913ba56be0a74f
fbf2a2a0839e6dd464755088a5f741dbeb3241eeb13619fc6bacd49df9c6da59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1979
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1
143.95.80.138200 OK 2.3 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (2123)
Hash dee84e0e8c2af40d94bc266e07f22dcc
7c44228095fb1748c0b268bc3b891175339d54c0
dfaf608af7307c78d7454a898c3aafe000b7f430645e1e7c47a0090108f43e0b
GET /wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2318
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1
143.95.80.138200 OK 2.8 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (4530)
Hash c8124a7ca10300db7eb4d3ca3daadece
b8ec0efcd940aa7abeefa48a612d6ee22bd17af6
97f7db24ad22ffd1ae7193adf2d44907bb6e6be314affdd541434529ce4302c3
GET /wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2753
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.0
143.95.80.138200 OK 1.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.0
IP 143.95.80.138:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 1d43db37790e13f685a3c696579e3b2c
ecd7d8bcf06c069e2f296726649b6959608abfbe
4207a6e0849fcaec34e8b6de5931cf3158aca1121c232039654b4144aea9552e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1203
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/masonry.min.js?ver=4.2.2
143.95.80.138200 OK 11 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/masonry.min.js?ver=4.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (23988)
Hash 12bbba0cdbcef081825eb63361e4921e
47686cf10c3057813d73733c3d49eaea529851a2
b1a6add1fd271acb8663f953d285ce73099d22dc3a566999c6ed326c8332b395
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10612
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
143.95.80.138200 OK 6.7 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (15660)
Hash d836011e55f3a3187f15314b0adefef0
1a96bac7e1946c5d5bd4cf0765a531f0ed64c97c
b81852c67f500f22d6587677acd4d9837589d65c4203e49a709fa5c2d42ff05f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6701
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.0
143.95.80.138200 OK 3.9 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.0
IP 143.95.80.138:0
File type ASCII text, with very long lines (9111)
Hash a9d79ad492f5d209828cf75ff095edb0
b969ee59c642ce462a2cea6b487f2b1d57a8a18a
c362ad1758080d8a6214b29639dd88f082394a603d4afa9f12d8a037f55f94e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3949
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
143.95.80.138302 Found 275 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c5953f5833e3a2fb162dd46c00bdf6a0
d110d097b7dad500d1d56497fcf0ea4393f41636
9fda50df3ceb5cfba19d1d51f020ebad4c14ecebcb3cdaa268211cc7f0d2d4f0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
Content-Length: 275
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
143.95.80.138302 Found 276 B URL HTTP/1.1 www.newartexaminer.net/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3a738e217b98343142d35e8a51b37b6b
78244076d3370116f581b9674ae1090e41d40136
c30a1dbdcae11158b21adf6c752f2e472eb4fd812e95717d6262d1c2a3893b0c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
Content-Length: 276
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215
143.95.80.138200 OK 473 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215
IP 143.95.80.138:0
Hash 26efbed194dd965ba75f23e3a55036e5
16ce4e3416f598667a658dd21b0750e46456fcfd
7c3bac7d992586c141a8ee28e8ad8210797c8404294b12c9390f86b6632b4f8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 473
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.0
143.95.80.138200 OK 1.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.0
IP 143.95.80.138:0
File type ASCII text, with very long lines (1668)
Hash 0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1000
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.0
143.95.80.138200 OK 764 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.0
IP 143.95.80.138:0
File type ASCII text, with very long lines (1241)
Hash 812e16a021ec2bb90b319d5ccb346473
47bfe8994777dd4ba6f68ed8904005cca152b3d0
5edafb1d91e3eee0d00462e5b6c8153ee380df5447dc6adc62264428839e7542
GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 764
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215
143.95.80.138200 OK 1.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215
IP 143.95.80.138:0
Hash 28b80aaf2ae2ef0de0d59144ea1a723b
b2d3ad6f06985a17a600b1b5fe2d160eee947303
aaa489d95f9aa848c37d2c39cd96ddcb82e881d69a14965f79692f90cc8ecf3b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1168
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.0
143.95.80.138200 OK 792 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.0
IP 143.95.80.138:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 792
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.0
143.95.80.138200 OK 1.1 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.0
IP 143.95.80.138:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 769e9d3f7fc383ec1a02024e39730474
4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1093
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215
143.95.80.138200 OK 417 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215
IP 143.95.80.138:0
Hash 73f7704398d8f6be9748d30791950984
3231f3786c364c7665cd7123d8fae0f42bbfd836
c1d9b23aff05fb52e5d6e68aff86d808097185c6dbaac6c3fc3ec6e5bea31ef4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 417
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1
143.95.80.138200 OK 1.5 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (521)
Hash a7e596dd85011b4d41c1db9a87d79f3a
a7b716d860459ddec30bd14de57f98926d8a59e9
5afa336dd99a71d0f289ce7cbc29a1fe95c1d30e695b1f4ba6fe181515542916
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1469
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1
143.95.80.138200 OK 6.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1
IP 143.95.80.138:0
Hash d85ca4599d1681168ce9958e29ab7ba5
db53d41dcf4c4a4b87d4aa6df0bad47720520800
f930df833554db19e1a5974d770f12db5f8a1e26f08202e449d76ebdd274dc67
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6205
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1
143.95.80.138200 OK 2.9 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (6911)
Hash 5b7cdabef69a55122084e96e19596234
5344eaa4b464655c5d6342096bb49af510756171
aaebcba2a5263898d2a770433eb22fb6b12d116d846b6ee7285cf2d3fa6c26a5
GET /wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2869
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
143.95.80.138200 OK 9.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (20089)
Hash d743c1730ad81ac54baffad2616b1455
22db04674a2e5a136b2e355179c39d29112ea8a6
b3fac8c89f18b4523294e28ac7bdb5a2567d478b6f87c45ee35534d0227f0cdd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9207
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1
143.95.80.138200 OK 2.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document, ASCII text, with very long lines (5370)
Hash 3a4df14b2d3a105a5c3c83c60e5a395d
e17ca5900005e101ef43c06b325c979d14c61a01
163097050bf30d22911faff62f3c165e5a15c2c4d268311618d8b97dac9710e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1975
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1
143.95.80.138200 OK 1.3 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document, ASCII text
Hash 9007b86678fe78c2c6f513e9dbc72988
3cabd71ed515bc00f72b63d1b38f62fda83c3263
87d0b19ea0085600a50a3083a086c3c894e436e459354b3764fb531c7736f9d9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1263
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1
143.95.80.138200 OK 1.9 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1
IP 143.95.80.138:0
Hash 7ab73cb7e551661d4d2301834625a001
0cd603f37e2172cfb3931e304e012d7ebc333126
dc4b6ef5e4e9d06fb22ebd4e2ee1eeb4209fe59f418f908b81ef8c9a0695206a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3089
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
143.95.80.138200 OK 1.9 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (1213)
Hash 4e6eb90cdc53afa49155da2cdbd1a972
d6257567a399e268f467c449e6c79189f0c5d48a
658946e90cb47ac0f6095df70ce448196a05a719dce088f2870e1feb92af9b2c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1882
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1
143.95.80.138200 OK 14 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1
IP 143.95.80.138:0
Hash 10b549c113cb2e401622e3cba611ecc4
f406f9487c25b8f6cd98f5341a26b4f09afb321f
79188f858a09d22e9f022dd3f86fb6feaba251cc72864e286874169562048b02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13849
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
143.95.80.138200 OK 1.8 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document, ASCII text, with very long lines (928)
Hash d4be843407f67bb7c7b180d09e3254b3
71bcd2917d6f2866759b8d4706b5d85eb97bce8a
524e0446bd0a4c245c2f7531c2213ac0a5f172ebe2ea8b33a672521af8dbe250
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1829
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
143.95.80.138200 OK 3.9 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP 143.95.80.138:0
File type ASCII text, with very long lines (6216)
Hash 9e037ee656ce83e5dfadecbfd72fce87
2e8871959ce54c056411d246884e6a9224434211
4bc49743b68a0919021273b6d06301c9771ab62d0abe340a07021aa9624c940e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3902
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2022/03/headercn.jpg
143.95.80.138302 Found 254 B URL HTTP/1.1 www.newartexaminer.net/wp-content/uploads/2022/03/headercn.jpg
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 188b7a18c658087d56a9ebc69a00ca1c
b146d1c3e68539e706167506822aee24dcfb3d09
1ad4fd34ebdbc68919396c3b27be2cbaf17a16d67fb477bbdd51d33d3c9d1cbf
GET /wp-content/uploads/2022/03/headercn.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/uploads/2022/03/headercn.jpg
Content-Length: 254
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.2.0
143.95.80.138302 Found 294 B URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.2.0
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 63208c6c829884f672ab75ee4b3b2af2
59aac2ad928e4745fe6449f01c2eea8d02a6abe6
39f315211051ee2b6769df0d402873bc9aec29b54b809bf2abf6eac4bcfccc2b
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.2.0 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:51 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.2.0
Content-Length: 294
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/uploads/2022/03/headercn.jpg
143.95.80.138200 OK 22 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2022/03/headercn.jpg
IP 143.95.80.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1500x400, components 3\012- data
Hash 78433bd72b52bcc147e986d4ae2aa4b3
f0e4bad3dfb61845bdabea9711c8a00d4d513367
9ae9fdedf4ded881b35629022d51b6873e5fc3c893ba94b40728603c36bfedaf
GET /wp-content/uploads/2022/03/headercn.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 10:48:59 GMT
accept-ranges: bytes
content-length: 22079
vary: User-Agent
content-type: image/jpeg
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e22c487307aca2e6e3d5ecfc7daae99a
3fb9ea3a5166ba4dfd6e5d05139936a96bc33c2d
66fc32efbb2c29a16706b6ea40145509974f7b9dbfafc72e104232a4c4d52d69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
142.250.74.35200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 26304, version 1.0\012- data
Hash 29404b5009a74d47f2a7923da5741fd5
c8c7a68af3f7e4f92d932203efda0c38e4d170ab
0b7e3af1cb23f3b1cc2c3418f3c31ab3bbadeaa2ba5e72f3cb818e4b44c420f4
GET /s/jost/v14/92zatBhPNqw73oTd4g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Dec 2022 15:04:10 GMT
expires: Sun, 17 Dec 2023 15:04:10 GMT
cache-control: public, max-age=31536000
age: 87522
last-modified: Mon, 11 Jul 2022 20:29:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23948, version 1.0\012- data
Hash aeb92e524ca62170347fa63974605767
1e10bfbd720481e42035a5469d7ce8fc51d34aab
25475d82cc976fb2c71b15b3e416c22bf636dd247bbb268d312e7c076ec5b6e4
GET /s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 21:35:33 GMT
expires: Tue, 12 Dec 2023 21:35:33 GMT
cache-control: public, max-age=31536000
age: 496039
last-modified: Mon, 09 May 2022 19:47:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
143.95.80.138403 Forbidden 6.1 kB URL HTTP/1.1 www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (481)
Hash 080745182ec64ad1eef75e561abcb8f1
75d21e720d10ef11dde6be4251a426e45fa85485
589a46931de5754e4f14601d4348b79a9d658d832ae75e0f7a55732cbaf53fd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 403 Forbidden
Date: Sun, 18 Dec 2022 15:22:52 GMT
Server: Apache
Last-Modified: Wed, 29 Sep 2021 08:01:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6083
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 27456, version 1.0\012- data
Hash 80becb8b7638756b35eebf31518f8904
ba154f44545a98796887a9b5cfd84d765d3d0c05
a0a9ce1553fa74dad4d8cf55b7df7d012a3acdec01cd39d682fce0e5b52e99f2
GET /s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 21:36:15 GMT
expires: Tue, 12 Dec 2023 21:36:15 GMT
cache-control: public, max-age=31536000
age: 495997
last-modified: Mon, 09 May 2022 20:10:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.woff2
143.95.80.138200 OK 77 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
content-length: 76764
vary: User-Agent
content-type: font/woff2
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff2
143.95.80.138200 OK 78 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
content-length: 78196
vary: User-Agent
content-type: font/woff2
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 15:22:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff2
143.95.80.138200 OK 13 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
content-length: 13276
vary: User-Agent
content-type: font/woff2
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2017/03/web..front_.cover_.-231x300.jpg
143.95.80.138302 Found 273 B URL HTTP/1.1 www.newartexaminer.net/wp-content/uploads/2017/03/web..front_.cover_.-231x300.jpg
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3e58a781d3b6b11c258d334c2d80ab80
b9e135721ad39c6ccbc231b164b945e0153635f5
5fe9f48477d89d7728c50aceac774776353768547476e8203e204991e8998d31
GET /wp-content/uploads/2017/03/web..front_.cover_.-231x300.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:52 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/uploads/2017/03/web..front_.cover_.-231x300.jpg
Content-Length: 273
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
143.95.80.138302 Found 258 B URL HTTP/1.1 www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fdd1bcdc05174c4c0b2af4dcc7c8c509
4d49a2b66098602e1b5e3da86fbcb3ce844ec532
a39d937de506eb774ef92ba5ec0afc2f06f0baf6a0ebc6a817ed572fde0f59ed
GET /wp-content/uploads/2020/10/Utah-Art.mp4?_=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:52 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
Content-Length: 258
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1
143.95.80.138200 OK 23 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1
IP 143.95.80.138:0
Hash 49a0832c684ff12eecc86e2eece6ef03
ef5947564d16a323d405210702d79c68ad7c60b1
4176b20991b62592765f2980e934bdd7c156bac9a6a00a1c1403e12d7a255dff
GET /wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2021/05/Karl-Wirsum-Great-Skates-III-1976.-1-247x300.jpg
143.95.80.138302 Found 290 B URL HTTP/1.1 www.newartexaminer.net/wp-content/uploads/2021/05/Karl-Wirsum-Great-Skates-III-1976.-1-247x300.jpg
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 435533232ed3269e0dd9ca9c4e2f737e
f6a86ce9eb3fce5e9ae0480b118ef40ba7d27e20
67972086c54b542be5272901b9b5440a57a776317d0d88ffbeb0386af04d0ee9
GET /wp-content/uploads/2021/05/Karl-Wirsum-Great-Skates-III-1976.-1-247x300.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:52 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/uploads/2021/05/Karl-Wirsum-Great-Skates-III-1976.-1-247x300.jpg
Content-Length: 290
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/uploads/2017/03/web..front_.cover_.-231x300.jpg
143.95.80.138200 OK 16 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2017/03/web..front_.cover_.-231x300.jpg
IP 143.95.80.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 231x300, components 3\012- data
Hash 976672d6f88d88c0b9d2c1e01c13afc4
b84130f839a54e86e36a52bcd6862b163e354e92
675df8101c9bb1ce7b02047a411d43d591487cf9ad3254a4547ac3d0f17c0586
GET /wp-content/uploads/2017/03/web..front_.cover_.-231x300.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Mar 2022 13:04:39 GMT
accept-ranges: bytes
content-length: 15912
vary: User-Agent
content-type: image/jpeg
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2021/05/Karl-Wirsum-Great-Skates-III-1976.-1-247x300.jpg
143.95.80.138200 OK 23 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2021/05/Karl-Wirsum-Great-Skates-III-1976.-1-247x300.jpg
IP 143.95.80.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 247x300, components 3\012- data
Hash 0814da41c000213bf18febe9cbff4c1d
3673c721191cb9a85c1255e9714cefc0904a0f08
31da5616e0707515be13545ab5b844d60b61aaea4e50e010ef882c030c60d860
GET /wp-content/uploads/2021/05/Karl-Wirsum-Great-Skates-III-1976.-1-247x300.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 May 2021 20:29:29 GMT
accept-ranges: bytes
content-length: 22716
vary: User-Agent
content-type: image/jpeg
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
143.95.80.138302 Found 247 B URL HTTP/1.1 www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6b9cc8f4862461fac4b491b525cc1d49
143a6424a73c3ca3651c4f75dc347deced5fa71d
416557af31c1a6a8cdde9fb76644bf9c077351037f50e3c91f5e5119701253b3
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:52 GMT
Server: Apache
Location: https://www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
Content-Length: 247
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
143.95.80.138302 Found 258 B URL HTTP/1.1 www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fdd1bcdc05174c4c0b2af4dcc7c8c509
4d49a2b66098602e1b5e3da86fbcb3ce844ec532
a39d937de506eb774ef92ba5ec0afc2f06f0baf6a0ebc6a817ed572fde0f59ed
GET /wp-content/uploads/2020/10/Utah-Art.mp4?_=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:52 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
Content-Length: 258
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/mediaelement/mejs-controls.svg
143.95.80.138200 OK 1.4 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mejs-controls.svg
IP 143.95.80.138:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597)
Hash d82444778486713d21d76c4b37861ee8
75062c49164162f25a0326d7fa6b97a3b1e0091c
261e21aa3e3a7c9ce04855161ea26dc34b2a19541ee92627c321d4a362a4c90d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Aug 2017 04:43:51 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1392
content-type: image/svg+xml
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-192x192.jpg
143.95.80.138302 Found 269 B URL HTTP/1.1 www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-192x192.jpg
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0192fb5e3619e1650f85d8e7b0a3e2fc
d4da5e38b8a2b925208024cf9854b6c0cf014a7c
223ea392880afaefb8c466ecffe39a1f628d66adef680e4216fcd594a33015ac
GET /wp-content/uploads/2018/08/cropped-512x512-192x192.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.newartexaminer.net/tag/karl-wirsum/
Cookie: PHPSESSID=f6ec9f5eb26ad3a7ab4c0d9efb98a730; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 15:22:53 GMT
Server: Apache
Location: https://www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-192x192.jpg
Content-Length: 269
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
143.95.80.138206 Partial Content 213 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
IP 143.95.80.138:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 213 kB (213142 bytes)
Hash c64b4345c88234f889a29e3005a0266a
aabfce89f059be2ab91f72f64bba96beb41161a2
f56d71436dbb14f8cc0602854cd9f93142e68d6fc670e8eab6c58491cc1fef8e
GET /wp-content/uploads/2020/10/Utah-Art.mp4?_=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Fri, 02 Oct 2020 08:18:51 GMT
accept-ranges: bytes
content-length: 46774680
vary: User-Agent
content-range: bytes 0-46774679/46774680
content-type: video/mp4
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-192x192.jpg
143.95.80.138200 OK 9.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-192x192.jpg
IP 143.95.80.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 192x192, components 1\012- data
Hash a41ebe266ac017679ee4e8872ef90d22
59b688aad15196e0a126975f4c48eb421d8b6a4c
c2a0d6c3946ea7d849bf2766062b4088f0317abd5f3219f107acfcbe64cf393f
GET /wp-content/uploads/2018/08/cropped-512x512-192x192.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Aug 2018 18:08:39 GMT
accept-ranges: bytes
content-length: 9209
vary: User-Agent
content-type: image/jpeg
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-32x32.jpg
143.95.80.138200 OK 1.6 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-32x32.jpg
IP 143.95.80.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 32x32, components 1\012- data
Hash a89996024d27731a68a32f80c77ecaee
776d0a080539702cafd7675dc68da6c60d802e77
c6bf2abe8b54ae3c9b17a64a8f3b06745b0aad9da66bd45251c2cf5cf31d81e6
GET /wp-content/uploads/2018/08/cropped-512x512-32x32.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Aug 2018 18:08:39 GMT
accept-ranges: bytes
content-length: 1630
vary: User-Agent
content-type: image/jpeg
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
IP 143.95.80.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: http://www.newartexaminer.net/
Origin: http://www.newartexaminer.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
wpo-cache-status: not cached
wpo-cache-message: The request method was not GET (OPTIONS), In the settings, caching is disabled for matches for one of the current request's GET parameters
access-control-allow-origin: http://www.newartexaminer.net
access-control-allow-credentials: true
set-cookie: PHPSESSID=369ee0252d0ecd17a231b584106dedf3; expires=Sun, 18-Dec-2022 21:22:52 GMT; Max-Age=21600; path=/; domain=www.newartexaminer.net; HttpOnly
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-brands-400.woff2
143.95.80.138200 OK 74 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-brands-400.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 74288, version 1.0\012- data
Hash eac60e8a656781e13d2a674b4d9051c0
0039be9d8a99d1e5cf200ca3e08757692020460e
eed474a49bdbf745c19e463f070e67977c1ab27835603eb749d9e5c249cf81f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-brands-400.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
content-length: 74288
vary: User-Agent
content-type: font/woff2
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff
143.95.80.138404 Not Found 218 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, CR, LF line terminators
Size 218 kB (218045 bytes)
Hash a8d6ede5be16e951010a10238df465a4
523606134cdbd37345f8565912f83cf2f7ea4443
61c4938c5cd4a3cf3123d34f8ac5ed6ce7785f91ca391e0be908309f97d24d04
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.newartexaminer.net/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=dbd6c57dcbe0070110a6250a069fd702; expires=Sun, 18-Dec-2022 21:22:52 GMT; Max-Age=21600; path=/; domain=www.newartexaminer.net; HttpOnly
vary: Accept-Encoding,User-Agent
content-type: text/html; charset=UTF-8
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.ttf
143.95.80.138200 OK 33 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.ttf
IP 143.95.80.138:0
Hash 6c3c5c856e2013319c30bc5f28e97070
5b3ab32a9b531241655e941ef94fc4f151dfe991
03d9560d2ebeace87f1e8fcc556083c0a643c8d5b5bbd0aa5f414edd5446fabe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.woff2
143.95.80.138200 OK 79 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 79100, version 1.0\012- data
Hash 5dc01cfcd5336f696cb85da7ce53fa9b
28a1f2fadc35c5343e0280389fe7955e3d1be607
f419ad7a4477f36ce73c74a23dce784150ca38fa5075a8e06109709cbb716903
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
content-length: 79100
vary: User-Agent
content-type: font/woff2
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.ttf
143.95.80.138200 OK 144 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.ttf
IP 143.95.80.138:0
Size 144 kB (143730 bytes)
Hash 4c8769398561dd59e70afea47c63e48b
ad5f3376c20fa196da56413abf40530b67ca8dad
535c2f5855b22a697e42c74a9be993ace7f3ff3e0113c5618dd8e1e1a8486857
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-brands-400.woff
143.95.80.138200 OK 87 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-brands-400.woff
IP 143.95.80.138:0
File type Web Open Font Format, TrueType, length 87048, version 1.0\012- data
Hash d30c44aaad8efa7626428c8294f7e880
e00a59950b59ba51e1bd1bce08d2f63d03a2268a
eb098ff1725c8819ea67b54d857b6574d20ccfbb2cc451c1fab85fb4d968a62d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-brands-400.woff HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
content-length: 87048
vary: User-Agent
content-type: font/x-woff
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-regular-400.woff
143.95.80.138200 OK 18 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-regular-400.woff
IP 143.95.80.138:0
File type Web Open Font Format, TrueType, length 18164, version 1.0\012- data
Hash e32cb360659f3788d9f4b5750c2c5a36
26b552cb139041d3044c937e7879c9be2a8528bf
9f982c59382f0b1a0f9f53ce2024a1504b9b51e4c371d2bfcca4b5090eb021fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-regular-400.woff HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
content-length: 18164
vary: User-Agent
content-type: font/x-woff
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.woff
143.95.80.138200 OK 102 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.woff
IP 143.95.80.138:0
File type Web Open Font Format, TrueType, length 102224, version 1.0\012- data
Size 102 kB (102224 bytes)
Hash a8eedaadb16b569a48a061d4aafa2d2e
28b3d94d115d3e80c3ffd86239fd84638c88d463
e14bf8513c6848f983ed24852e9700dec95589b748e26bacd6b2ca7dc9bb2aee
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.woff HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
content-length: 102224
vary: User-Agent
content-type: font/x-woff
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-regular-400.ttf
143.95.80.138200 OK 35 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-regular-400.ttf
IP 143.95.80.138:0
Hash b10cbde22c82b23b23fff6754884c4ea
aee23737f3d3268b91c7f99fceeab19dd76e318d
9e73b6fb571eacee4c2e87dc69ce78781a576dbc03d28db63692da44abb6bc60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-regular-400.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-brands-400.ttf
143.95.80.138200 OK 170 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-brands-400.ttf
IP 143.95.80.138:0
Size 170 kB (170058 bytes)
Hash 1670de72d5ae73c354cf2de77a0731fd
0fd314e1149d0c5016b55cd697c1eb895115cbf0
132e1a40ec4ba534115f5f8b5b81cdba489773a162c11907653eda1ca8842677
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-brands-400.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-regular-400.woff
143.95.80.138200 OK 18 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-regular-400.woff
IP 143.95.80.138:0
File type Web Open Font Format, TrueType, length 18164, version 1.0\012- data
Hash e32cb360659f3788d9f4b5750c2c5a36
26b552cb139041d3044c937e7879c9be2a8528bf
9f982c59382f0b1a0f9f53ce2024a1504b9b51e4c371d2bfcca4b5090eb021fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-regular-400.woff HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
content-length: 18164
vary: User-Agent
content-type: font/x-woff
date: Sun, 18 Dec 2022 15:22:54 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff
143.95.80.138200 OK 102 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff
IP 143.95.80.138:0
File type Web Open Font Format, TrueType, length 102224, version 1.0\012- data
Size 102 kB (102224 bytes)
Hash a8eedaadb16b569a48a061d4aafa2d2e
28b3d94d115d3e80c3ffd86239fd84638c88d463
e14bf8513c6848f983ed24852e9700dec95589b748e26bacd6b2ca7dc9bb2aee
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
content-length: 102224
vary: User-Agent
content-type: font/x-woff
date: Sun, 18 Dec 2022 15:22:54 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 15:22:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
IP 143.95.80.138:0
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.6 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 11:47:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 10:14:15 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.ttf
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.ttf
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-solid-900.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff
143.95.80.138404 Not Found 0 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.newartexaminer.net/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=b2d9dd3c1c853ee7e273cc16e3cb6b21; expires=Sun, 18-Dec-2022 21:22:52 GMT; Max-Age=21600; path=/; domain=www.newartexaminer.net; HttpOnly
vary: Accept-Encoding,User-Agent
content-type: text/html; charset=UTF-8
date: Sun, 18 Dec 2022 15:22:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-regular-400.ttf
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-regular-400.ttf
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-regular-400.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:54 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11590
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/style.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/style.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/themes/chromenews-pro/style.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-brands-400.ttf
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-brands-400.ttf
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/fonts/fa-brands-400.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:53 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 15:22:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
IP 143.95.80.138:0
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:24:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.newartexaminer.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 15:22:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.ttf
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.ttf
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.ttf HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sun, 18 Dec 2022 15:22:54 GMT
server: Apache
X-Firefox-Spdy: h2