www.editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
301 Moved Permanently 278 B URL HTTP/1.1 www.editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8cd7bfe39c12ed69075c742526bb5f11
d071faaa0f2c386394a9aa7125ac4dca70530d78
822677681fe07611a37517f04cc70a4468504c22fa28c43661994bd47a44069a
Analyzer Verdict Alert fortinet Phishing
GET /postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/ HTTP/1.1
Host: www.editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 01:09:10 GMT
Server: Apache
Location: https://www.editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Content-Length: 278
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5443
Expires: Sat, 03 Dec 2022 02:39:53 GMT
Date: Sat, 03 Dec 2022 01:09:10 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3484
Cache-Control: max-age=123609
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:10 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 11:29:19 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11676
Expires: Sat, 03 Dec 2022 04:23:46 GMT
Date: Sat, 03 Dec 2022 01:09:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 00:18:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3057
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: GjotAA7S1dHRTUDaafF9I9jdoVWn7U3RCMDxxPRsOnx/lsevutUglkRWbhjAbxFUjvFNmHwQNI4=
x-amz-request-id: Q6TJ0ZSVZ0RJV2K7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 00:46:20 GMT
age: 1370
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3fa201a77f2d9dcf6fd2070f719016a8
f2a92b506de70a55da34e82825ef73f9c2c6e71f
4f9171976f754753093e8a36790b51db62ceb9a432420d254b41bf32a48bde82
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F9171976F754753093E8A36790B51DB62CEB9A432420D254B41BF32A48BDE82"
Last-Modified: Fri, 02 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Sat, 03 Dec 2022 07:08:16 GMT
Date: Sat, 03 Dec 2022 01:09:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 00:11:16 GMT
cache-control: public,max-age=3600
age: 3475
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3465
Cache-Control: max-age=118528
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:11 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:04:39 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
301 Moved Permanently 0 B URL HTTP/2 www.editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/ HTTP/1.1
Host: www.editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
referrer-policy: no-referrer-when-downgrade
content-length: 0
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 01:09:11 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uf6nKyOy5x3EnkNf2msBDg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h/d8bWhLDvvggZ9Jr4KKC/qMRmI=
editoranews.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5
200 OK 986 B URL HTTP/2 editoranews.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash af8993893cf0e8840cfa07c28152f7d7
020642adb362f41142e612a4aed05f187cc6fbe0
a76fed90a602ac9bc687d6889a8dac2bd929437f84af088f257a3559543841cc
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 19:25:15 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 986
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
200 OK 217 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
IP
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /c/6.1.1/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106
200 OK 458 B URL HTTP/2 editoranews.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1156), with no line terminators
Hash 0700905b705f44f6bef08b2726874c21
99ad11afd1a04122f39a2a05aea5b60ff9dbb812
af2c2830705f77b6784a2635b3cadb5772c025de8f878ad14abab0feb1e81925
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Jul 2021 22:52:04 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 458
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5
200 OK 8.5 kB URL HTTP/2 editoranews.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7973e77b98802c0ea2d4016644d1f06c
3859b417c6bef2db0058724fad81e5df2166fe27
148eeddc5b558d00af2517b77f689158b9dea1a6bf52e6e8cd9ece6e0cf0cca9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 19:25:15 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8481
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.5
200 OK 7.1 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash 132393cbbd112512206aa3c468a210ee
7c0a904b30a100e744fa0dce8a5e47079810a4c3
fe7806c8283bc20c74e50713d63b477299130d05d9b0e2391ad5d307f5eb2292
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7119
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
200 OK 900 B URL HTTP/2 editoranews.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3432)
Hash 1e0ef5b4ebd931aecd01564980628978
e618b92e03a6c4bd4abffed22abb1e835c05a601
1deef467f6db854d82e8c6288086664c7cf60a41b18bb7216d63bb83061ba878
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 00:13:00 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 900
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
200 OK 1.6 kB URL HTTP/2 editoranews.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13766)
Hash 7e47cec420b48e49d1e640389561dea0
c2211071a56905121ef526b8860cc0b87ed37cc0
caf6180227353323d2fcafeefcf9686c00034933ee249093ba6e61c10954228e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 20:34:19 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1609
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-173646298-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-173646298-1
IP
File type ASCII text, with very long lines (1921)
Hash a8759d0cae9d14ef4a0cfb98587b9144
1f80d86f00df1666409a73408b992079caf73eb6
f1da7a6a618e61666fd7ead44c6c06085031cec1afc3ebcf77628204b1b3db74
GET /gtag/js?id=UA-173646298-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 01:09:12 GMT
expires: Sat, 03 Dec 2022 01:09:12 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/magnific-popup/magnific-popup.min.css?ver=2.1.5
200 OK 1.8 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/magnific-popup/magnific-popup.min.css?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5219), with no line terminators
Hash 5a8bb11667ac06e936a3fa9c4203e28f
43b8ec470317bf65d9b44dbe4e335695855808ae
7ba0941266a57542650152ca01ed2329188e4fc166809c5eccba626d21eb8b41
GET /wp-content/themes/colormag/js/magnific-popup/magnific-popup.min.css?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1823
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
editoranews.com/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5
200 OK 11 kB URL HTTP/2 editoranews.com/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 68f31f156fec9521abc5d50798a55dc4
c7d367dacd71e2bddd30350391370db876bbbbc3
f0b996f22ccaed017e0617619ca0e130ee87a482ad4e042398900a41f32f4f7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 19:25:15 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 10776
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106
200 OK 2.6 kB URL HTTP/2 editoranews.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6091), with no line terminators
Hash 04707e026d958b0930058e62e149a320
5add6ddce69863946c147d32b8b17ebf8d996270
25ba9835e3b974f8f386b819df9e9458775f30cb4d5411f4264f754be09659ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Jul 2021 22:52:04 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2574
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.8
200 OK 8.0 kB URL HTTP/2 editoranews.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.8
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40956)
Hash 5d662b3be3845ab051c0924a3fc268c4
5e3235658979dbd821d71154feb09f78dacabd58
569f49a7f4035dddee5aa88d1813655a5e8b978b0f7ea9b55a2d667fd8fd96f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.8 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 20:34:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8038
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.5
200 OK 8.1 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (23954), with no line terminators
Hash 85cc06db0d68a3330392d9241afc2906
45bfa48dd9451ffc70b0a1dafba1ab10d7e74803
99cc91e39b78b675bcc50c8984506695bdb14dcf73eb3c23f36898fa233e76fe
GET /wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8072
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.5
200 OK 680 B URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1567), with no line terminators
Hash bf9317ff912410f659b47a043a3cb94e
97e644afbe721fd0d3640430e9118d0b6fc468e1
44edcd7b6173ab6a39ec0c1ad76c9d843c677b51d815adbd927e4abaab280ed5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/js/navigation.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 680
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.5
200 OK 242 B URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (325), with no line terminators
Hash 08d2bf4a763267afc84beb93b7c39f88
2221be913b0428a1bafe766ec95a841b488318bc
2902a191ee6ba196d11c1606d3d05bcc3e9ed69a71e101ea4ab3735f6aa81105
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 242
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/news-ticker/jquery.newsTicker.min.js?ver=2.1.5
200 OK 1.1 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/news-ticker/jquery.newsTicker.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3437), with no line terminators
Hash d7864bc8c1b0b8d4f3600ea80b84cca8
6128323b4aff792537e0f1f235d3f18643f2fea6
e0f12d14eae0359933dc01c8a4533d3fd2cef02569012da8a0df9f47afab0ade
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/js/news-ticker/jquery.newsTicker.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1130
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.5
200 OK 1.6 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4231), with no line terminators
Hash e4d2c8be5fa8274cbc666e5e72dd8a45
cdc1864920d7e4236059fdf75648c04a0793d27d
59a78f0b574eca302a227cd049595d8684a7031e3ffdb108b5d7e49188fc5822
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1595
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
200 OK 3.6 kB URL HTTP/2 editoranews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8983), with no line terminators
Hash 1df110117d60123b5301995daf4dcf77
d3f2b4ba707c68302d4e7de6f097202e6dda2902
3cbb6d882e6a389ccb427290ad15ec65a8c37b1ddab26654284680873d6154ab
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 16:34:53 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3579
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 5.3 kB URL HTTP/2 editoranews.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5321
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
200 OK 4.0 kB URL HTTP/2 editoranews.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7874)
Hash 084ee597d9c96fbe362d18cea4fd0ccc
d9737fc0a725b654dbb6ed445a8a752156bf8849
727e817f449359cd310ba42651dc44b2194bd9f3838f2febd855307da5feba0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Nov 2022 17:04:36 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3989
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
200 OK 2.9 kB URL HTTP/2 editoranews.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8014), with no line terminators
Hash 1c44ef5e10d4a8e0d89d78ad512e2cbc
6b5a049fefb1c791a9f84e9a97c9256ad0fae8ac
7f3df0933239d81fd6c58b50ea4b943db51c48aecd636b249514937c91c03d62
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 00:13:00 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2937
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/magnific-popup/jquery.magnific-popup.min.js?ver=2.1.5
200 OK 9.0 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/magnific-popup/jquery.magnific-popup.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19870), with no line terminators
Hash 7dc34908da7ed1c3a8ee1d7ebabae35e
bf978ede62e9fe4a3e1c425a3a2e45168b838653
a40076daeb5ae546e1903b8a43c480477e29de64aa8cf9e7b975a6b70c9b11ba
GET /wp-content/themes/colormag/js/magnific-popup/jquery.magnific-popup.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8968
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8
200 OK 150 B URL HTTP/2 editoranews.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash 14e97c0bd8b30f6184d7b9b0de3b62dc
052e2d09afda94db181e7b410ef3c49567350896
cf50cfaa42eabf7e33d6b7214e8965573e33b17b60420352789410639c9c80aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 20:34:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 150
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862
200 OK 1.1 kB URL HTTP/2 editoranews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2366), with no line terminators
Hash 2102191e5858f2ee9ceaac22a335142d
48aa0617af23081a67f906a61f3511e29e9dbfcd
c84ee5d2635a3e45ade7d2433fc62fbc14bff169b8327af36b3c5e0b80d0ca01
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 16:34:53 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1076
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.5
200 OK 783 B URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (1754), with no line terminators
Hash 80cbc095118fd0142a7f93be34c50888
cec5890472e6f0df439ee98ad4c9f8cf14e222d8
ebb57994726e4cfbc40cfdfa5e0c3e39de93292e963e535e537f752acc6b38a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 783
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
200 OK 901 B URL HTTP/2 editoranews.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1713), with no line terminators
Hash 3e33d71d7250e95ae90fbd97b39c7075
b19776ee503d6f29411092ab7caa614e8831c2ef
9e0ab4d1f16b939246bb32425207d6f4861275d7ef03acfb85ecac492a750f47
GET /wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 20:34:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 901
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.5
200 OK 1.2 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3042), with no line terminators
Hash 3e372c97fed075f3f43f6cf7bb7e2adb
40bc0e43476e7fbf120398ed0831995befe88652
d3cf46c600ff7173f897c2aa0afaf3e779cebfae0612043808381a7d9502799b
GET /wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1161
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=692
200 OK 6.3 kB URL HTTP/2 editoranews.com/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=692
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14432), with no line terminators
Hash 11753d3fc13b580b96c709747ef663cf
91b3643a17783ae353f641d309a550a6ee462845
ac9aa218863ffe73bbcdc1888d7f816a86bc65440586fb08bc4ae4a17a0342b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=692 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 00:13:02 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 6341
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8
200 OK 12 kB URL HTTP/2 editoranews.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32390), with no line terminators
Hash 1fe9e925e530d18152f46ba95e68bbc0
952661cad3a84349bed4fec3f20c4dd44e6e7274
9b091e6f90c8b8d6add414f15fc9a798cb3617b9a422783bc5619da4947d5849
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 20:34:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12033
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
200 OK 9.8 kB URL HTTP/2 editoranews.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (24463)
Hash fb092211d0a2836dce89f50a87893316
141c3058a3d209cd6606ad88163af9791706d5be
beb74149278a12e2e78cdb38f115e9d055e8622f2306f03738b2dc6ab742140e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 20:34:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 9806
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5520
Expires: Sat, 03 Dec 2022 02:41:12 GMT
Date: Sat, 03 Dec 2022 01:09:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6420910e-ce43-46a0-89dc-4495fcc90ae3.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6420910e-ce43-46a0-89dc-4495fcc90ae3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e69659e6409f9caf1fe9cc67c9627353
d316d825169d60dde81a3ee522dd004dfa97fa91
88caacec3bbb78e83905b25b489aff9ae71cfed94835503c601daa15f8248d9c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6420910e-ce43-46a0-89dc-4495fcc90ae3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9527
x-amzn-requestid: 8bbc4492-b1b2-4aae-a09e-1d2c4453e642
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsg9GuBoAMFm2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6384279f-02732aee2d0807af5674481f;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:14:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cXBNqahvO50EQQ9KGJXMsj3ClEv6OGuRc80LaN5FJ4qQRfylEkUa5w==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 01:33:03 GMT
age: 84970
etag: "d316d825169d60dde81a3ee522dd004dfa97fa91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff
200 OK 78 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 78156, version 3.0\012- data
Hash 1a592f9655ac68db7ba196134e938d74
8edc1a005636480304808fd9393c49ecae3d7e23
a1434cb9eee1f618cfa38f76759c919e606679bb2beb2cadd62964361c43a741
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://editoranews.com/wp-content/themes/colormag/style.css?ver=2.1.5
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-length: 78156
content-type: application/font-woff
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 11887
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
editoranews.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
200 OK 36 kB URL HTTP/2 editoranews.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash e4589226460d190677e35a31ad8546a7
47260adb3e847ab94177da73fc7dc7033cce3890
e20d1aadd14f58f9cbb8f861eb5298c26156b21b548e49de4ac2f36853845c0a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 20:34:19 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bd85z5A6C0nxpDjeSEPp1NHJxXFO5sy1OgTLz7KpdWz61TNrfyQ47Q==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:48:26 GMT
age: 76847
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd79a3383-273b-420b-975f-73400e86239a.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd79a3383-273b-420b-975f-73400e86239a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7c90eda6b69179422ecd1245e94162c
d5e0aef84626250a62cc94a781a47e08aaac3f6a
5fd1c9586a82c9e6a9a8b5d99b746f17e9485f80057ec35c3f8d5ab5256fbb16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd79a3383-273b-420b-975f-73400e86239a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8273
x-amzn-requestid: 6abe0e18-1b39-4a87-8f15-6ea75d99b658
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZosHLDIAMFyoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fd1-455200672a96e0f5605a339f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:36:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sSTysER3tOW4FGv3lqvx2cPAaG8J9wyeuRJB61x8oYQG9Ah1xe1Z0w==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:33 GMT
age: 11740
etag: "d5e0aef84626250a62cc94a781a47e08aaac3f6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFIpOllaPcRJOsgZI2EVDyFv-Doz62OcY6gxFlejoXxdeVGya-PNFg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:26 GMT
age: 11747
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=171717938&post=0&tz=-3&srv=editoranews.com&j=1%3A11.5.1&host=editoranews.com&ref=&fcp=2460&rand=0.5072273741043043
200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=171717938&post=0&tz=-3&srv=editoranews.com&j=1%3A11.5.1&host=editoranews.com&ref=&fcp=2460&rand=0.5072273741043043
IP
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=171717938&post=0&tz=-3&srv=editoranews.com&j=1%3A11.5.1&host=editoranews.com&ref=&fcp=2460&rand=0.5072273741043043 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:13 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/style.css?ver=2.1.5
200 OK 106 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/style.css?ver=2.1.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Size 106 kB (105912 bytes)
Hash 9edf513ce685bfaf2aa31b7a49056538
4f04b8ba9497ddc2d7ad80d7374dadedd4ba001e
c7ec645b5dfb0440f3e161d3c6ebb5080ee723b13a8faeddea9682deade90a11
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/style.css?ver=2.1.5 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: text/css
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://editoranews.com/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.5
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-length: 77160
content-type: application/font-woff2
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/editoranews.com/wp-content/uploads/2020/07/cropped-cropped-cropped-base-4-1.png?fit=150%2C94&ssl=1
200 OK 4.2 kB URL HTTP/2 i0.wp.com/editoranews.com/wp-content/uploads/2020/07/cropped-cropped-cropped-base-4-1.png?fit=150%2C94&ssl=1
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 49d69c8f12344133a9a48fa35664d667
0135d918632f37e5328380cd1c5cf52568d3a0dd
591b9fe963c1564c645c279126ce915c58dcb86adb16746adb1a947ca58c3891
GET /editoranews.com/wp-content/uploads/2020/07/cropped-cropped-cropped-base-4-1.png?fit=150%2C94&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:13 GMT
content-type: image/webp
content-length: 4226
last-modified: Fri, 02 Dec 2022 18:18:05 GMT
expires: Mon, 02 Dec 2024 06:18:05 GMT
cache-control: public, max-age=63115200
link: <https://editoranews.com/wp-content/uploads/2020/07/cropped-cropped-cropped-base-4-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "c1df39b506a11d31"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff
200 OK 80 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 80280, version 3.0\012- data
Hash dec1ef467e5034d2562db22cf413034a
63eecb1133924bb8ec787a509a1e9e9afe8fb5bc
543ceb846af6fbfff9fc58f1e53994f3f191116c51ca95de3ce75d675c50ea66
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://editoranews.com/wp-content/themes/colormag/style.css?ver=2.1.5
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:13 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-length: 80280
content-type: application/font-woff
date: Sat, 03 Dec 2022 01:09:13 GMT
server: Apache
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-Light.woff
200 OK 80 kB URL HTTP/2 editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-Light.woff
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 80036, version 3.0\012- data
Hash 365a45b28097e68225020dd9417bedf9
121a925f5f435619c2d0bb6c5026f4eda2b6edfb
cf336209cd00b79ed36399d1877aa0c2f50cb7e75b38592fdbcf80bf4ac153bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/assets/fonts/OpenSans-Light.woff HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://editoranews.com/wp-content/themes/colormag/style.css?ver=2.1.5
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:13 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-length: 80036
content-type: application/font-woff
date: Sat, 03 Dec 2022 01:09:13 GMT
server: Apache
X-Firefox-Spdy: h2
demo.themegrill.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
301 Moved Permanently 162 B URL HTTP/1.1 demo.themegrill.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /colormag/wp-content/uploads/sites/20/2015/03/728x90.png HTTP/1.1
Host: demo.themegrill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Dec 2022 01:09:13 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://demo.themegrill.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
Host-Header: 8441280b0c35cbc1147f8ba998a563a7
X-HTTPS-Enforce: 1
X-Proxy-Cache-Info: DT:1
i0.wp.com/editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png?fit=192%2C192&ssl=1
200 OK 772 B URL HTTP/2 i0.wp.com/editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png?fit=192%2C192&ssl=1
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 417174465a5e520798e3b18609b8f2c1
263b0d729871017f2cbe4dda995172a76cca249d
950e64b00c05c805391884e34b7cf0ced54e8a4b8d08268838bb27e1b75edc65
GET /editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:13 GMT
content-type: image/webp
content-length: 772
last-modified: Fri, 02 Dec 2022 21:20:27 GMT
expires: Mon, 02 Dec 2024 09:20:27 GMT
cache-control: public, max-age=63115200
link: <https://editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png>; rel="canonical"
x-content-type-options: nosniff
etag: "73f52753b892a455"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png?fit=32%2C32&ssl=1
200 OK 340 B URL HTTP/2 i0.wp.com/editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png?fit=32%2C32&ssl=1
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d96895dce7122edc8c7b34d46e891415
f7f2cb80e90a30fdbc6251bdc9c59a38fc1cdef9
9107c35844c344273cf794cb6b8254b1ff0304eb537468386d565110309335ef
GET /editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:13 GMT
content-type: image/webp
content-length: 340
last-modified: Fri, 02 Dec 2022 21:20:27 GMT
expires: Mon, 02 Dec 2024 09:20:27 GMT
cache-control: public, max-age=63115200
link: <https://editoranews.com/wp-content/uploads/2020/07/cropped-logo-2.png>; rel="canonical"
x-content-type-options: nosniff
etag: "5d2a5a6be22bdeac"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 00:41:08 GMT
expires: Sat, 03 Dec 2022 02:41:08 GMT
cache-control: public, max-age=7200
age: 1685
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 6acc582e88a49b8d0a4c05705f9c6af2
7cd445187fc02c97202cde41ee450d0c078cfd9c
41dc74b2ddf000db6ff024819614df835bb6092f78bba04e409b11f05e645348
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4278
Cache-Control: max-age=100632
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:13 GMT
Etag: "6389771b-1d7"
Expires: Sun, 04 Dec 2022 05:06:25 GMT
Last-Modified: Fri, 02 Dec 2022 03:55:07 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7351023415687948
200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7351023415687948
IP
File type ASCII text, with very long lines (4885)
Hash ce73bacbb3e5e37697df0734e8135291
d27da30af07b9493cba23afbeb374a46b4334ff9
2ee470d62151ad3432df281bd118f8f42aa10a20a7995bde6b8d733623c16666
GET /pagead/js/adsbygoogle.js?client=ca-pub-7351023415687948 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://editoranews.com
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 03 Dec 2022 01:09:13 GMT
expires: Sat, 03 Dec 2022 01:09:13 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 18112804575943686620
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49440
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (4885)
Hash b09382975cccc83f2d6eddbc95e18a8c
fe57ff75d920b38b3fba34a08ec89da629e2247a
4aaf96e2a0bda7e7cd9bfcf141f7f94cca7a2a74b818227f13bba471f00120bb
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 03 Dec 2022 01:09:13 GMT
expires: Sat, 03 Dec 2022 01:09:13 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 2587047559918706825
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49460
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 6acc582e88a49b8d0a4c05705f9c6af2
7cd445187fc02c97202cde41ee450d0c078cfd9c
41dc74b2ddf000db6ff024819614df835bb6092f78bba04e409b11f05e645348
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4278
Cache-Control: max-age=100632
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:13 GMT
Etag: "6389771b-1d7"
Expires: Sun, 04 Dec 2022 05:06:25 GMT
Last-Modified: Fri, 02 Dec 2022 03:55:07 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Fri, 02 Dec 2022 15:22:03 GMT
expires: Fri, 16 Dec 2022 15:22:03 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 35230
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&gjid=200288138&_gid=208375287.1670029752&_u=YGBACUAABAAAACAAI~&z=2100698367
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&gjid=200288138&_gid=208375287.1670029752&_u=YGBACUAABAAAACAAI~&z=2100698367
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&gjid=200288138&_gid=208375287.1670029752&_u=YGBACUAABAAAACAAI~&z=2100698367 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://editoranews.com
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://editoranews.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 01:09:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
demo.themegrill.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
301 Moved Permanently 291 B URL HTTP/2 demo.themegrill.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 71bad85bfc79662b4b2368d4416955e8
e13d565887af52b73c7acf065d5ac3cdbb97686f
472aaf446709d8290745f68bb3bdd31b9f0a64c02e6e7af7add9e9994f4e8b6f
GET /colormag/wp-content/uploads/sites/20/2015/03/728x90.png HTTP/1.1
Host: demo.themegrill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 03 Dec 2022 01:09:13 GMT
content-type: text/html; charset=iso-8859-1
content-length: 291
location: https://themegrilldemos.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
host-header: 6b7412fb82ca5edfd0917e3957f05d89
x-proxy-cache: MISS
x-proxy-cache-info: 0301 NC:000000 UP:
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=editoranews.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=editoranews.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=editoranews.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 01:09:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=editoranews.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=editoranews.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=editoranews.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 01:09:14 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&_u=YGBACUAABAAAACAAI~&z=765182716
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&_u=YGBACUAABAAAACAAI~&z=765182716
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&_u=YGBACUAABAAAACAAI~&z=765182716 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 01:09:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&_u=YGBACUAABAAAACAAI~&z=765182716
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&_u=YGBACUAABAAAACAAI~&z=765182716
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-173646298-1&cid=1451322755.1670029752&jid=1369965897&_u=YGBACUAABAAAACAAI~&z=765182716 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 01:09:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1326859447668039&ev=PageView&dl=https%3A%2F%2Feditoranews.com%2Fpostbank%2F0a6e07eaecfd3404e8e96fbb4cf9252e%2F&rl=&if=false&ts=1670029751997&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-6.1.1-3.0.8&ec=0&o=30&fbp=fb.1.1670029751996.605980043&it=1670029751719&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1326859447668039&ev=PageView&dl=https%3A%2F%2Feditoranews.com%2Fpostbank%2F0a6e07eaecfd3404e8e96fbb4cf9252e%2F&rl=&if=false&ts=1670029751997&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-6.1.1-3.0.8&ec=0&o=30&fbp=fb.1.1670029751996.605980043&it=1670029751719&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1326859447668039&ev=PageView&dl=https%3A%2F%2Feditoranews.com%2Fpostbank%2F0a6e07eaecfd3404e8e96fbb4cf9252e%2F&rl=&if=false&ts=1670029751997&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-6.1.1-3.0.8&ec=0&o=30&fbp=fb.1.1670029751996.605980043&it=1670029751719&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 03 Dec 2022 01:09:14 GMT
X-Firefox-Spdy: h2
themegrilldemos.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
500 Internal Server Error 616 B URL HTTP/2 themegrilldemos.com/colormag/wp-content/uploads/sites/20/2015/03/728x90.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fa696255ba8f90025aef717962b730fe
b5882ae558a9979f209c2daf5326583b7b6466c5
e6ff0ac7659e9b23bb17a0c5d7b5d1c49586c0ab26f02fb76c57adbba125c454
GET /colormag/wp-content/uploads/sites/20/2015/03/728x90.png HTTP/1.1
Host: themegrilldemos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
server: nginx
date: Sat, 03 Dec 2022 01:09:14 GMT
content-type: text/html; charset=iso-8859-1
content-length: 616
age: 0
x-cache: MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bb045ee4346b85d699158fdba8f84f64
ee5cf0d75cd678dc71c6083cc7ce68169c0fce2d
8b2dcab1627a9c21b66cd6ea676dd5b4b6a39bebf2cfafcc21f52b5221bb6a03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 01:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
editoranews.com/wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js
200 OK 81 kB URL HTTP/2 editoranews.com/wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 16b59f077e9d10f3dccfa08fef1beabc
df3c5e26610ba2736785798c772cafbf4f2aecb3
0c32318a48b94cf0b67265b54de1b757f93825ae6f1dcbca3a84bfc1555d3c3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
Connection: keep-alive
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes; _ga=GA1.2.1451322755.1670029752; _gid=GA1.2.208375287.1670029752; _gat_gtag_UA_173646298_1=1; _fbp=fb.1.1670029751996.605980043; __gads=ID=87ffc3dd8ae1d0e9-227dc1cf00d8006c:T=1670029754:RT=1670029754:S=ALNI_MaI9elOCVbmNDWvLGkwNP0__hdMJA; __gpi=UID=00000b8c2234cd4f:T=1670029754:RT=1670029754:S=ALNI_MbthJmj831HjcCoIaray7nP8kT5FQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 16:34:51 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:14 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Sat, 03 Dec 2022 01:09:14 GMT
server: Apache
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 15:08:26 GMT
expires: Fri, 01 Dec 2023 15:08:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 122448
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff
200 OK 0 B URL HTTP/2 editoranews.com/wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://editoranews.com/wp-content/themes/colormag/style.css?ver=2.1.5
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 16:52:22 GMT
accept-ranges: none
cache-control: max-age=31536000
expires: Sun, 03 Dec 2023 01:09:12 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-length: 80196
content-type: application/font-woff
date: Sat, 03 Dec 2022 01:09:12 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
GET /c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
IP
GET /c/6.1.1/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
content-encoding: br
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
IP
GET /c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
IP
GET /p/jetpack/11.5.1/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
IP
GET /p/jetpack/11.5.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 25 Oct 2022 13:51:34 GMT
content-encoding: br
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
404 Not Found 0 B URL HTTP/2 editoranews.com/postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /postbank/0a6e07eaecfd3404e8e96fbb4cf9252e/ HTTP/1.1
Host: editoranews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://editoranews.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 01:09:11 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
GET /c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
IP
GET /c/6.1.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
content-encoding: br
expires: Sun, 03 Dec 2023 01:09:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/e-202248.js
200 OK 0 B IP
GET /e-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://editoranews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 01:09:12 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Mon, 20 Nov 2023 01:50:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
216.172.172.212
23.33.119.27
157.240.240.35
0.0.0.0