r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7e300ca7d2d586dd1ca0c185ef6b0da5
3914cfd3b7aa6e1d1117bf509319479e489ed2a4
91c8810ad137faf4393f7d15f9c619c06d124a7aaebfa21290dca614db2c7757
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91C8810AD137FAF4393F7D15F9C619C06D124A7AAEBFA21290DCA614DB2C7757"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17010
Expires: Sat, 24 Dec 2022 20:09:18 GMT
Date: Sat, 24 Dec 2022 15:25:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ad598540c6639aaaa344fb3ce4f3162f
b0b9f86d50de7dc23bdc7aee2f45d79a06165afc
4e9aaff330ce0c9c11f6bb8502fe21296b1845151bace75f73908a3194d5d0a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4E9AAFF330CE0C9C11F6BB8502FE21296B1845151BACE75F73908A3194D5D0A1"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6340
Expires: Sat, 24 Dec 2022 17:11:28 GMT
Date: Sat, 24 Dec 2022 15:25:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6b1d63d9d906daa309dc263b4991bbe9
04680ddd86781d46dfe6a9671571b3ad1f3758f3
46fff7230b88de4cd81dfb0feb783d2dec27e49041f9257d2fb891030781bf6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46FFF7230B88DE4CD81DFB0FEB783D2DEC27E49041F9257D2FB891030781BF6C"
Last-Modified: Fri, 23 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9555
Expires: Sat, 24 Dec 2022 18:05:03 GMT
Date: Sat, 24 Dec 2022 15:25:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 24 Dec 2022 14:46:16 GMT
content-type: application/json
age: 2372
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: P+G2Vme+BFmBohq8TnafhzllCwVPLDXJrJqxEw655FdN1i6MqPTRF4+rqF1tqozILHxwdHebBwrwJlnxx+mQEw==
x-amz-request-id: Y3AXNJDS859YFAPH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Dec 2022 14:56:38 GMT
age: 1750
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Dec 2022 15:25:48 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 24 Dec 2022 15:08:04 GMT
age: 1065
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d7938ab2263405a708c44813f3e16cb8
3ba9f4363ecc2834ea1211f761ce2d04e0077ab3
8a8ef4218bcd8ecb1f12ecdb74f3f453a7093be8dd3c233615577dcc9b40fa92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1357
Cache-Control: max-age=151417
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 15:25:49 GMT
Etag: "63a6c129-1d7"
Expires: Mon, 26 Dec 2022 09:29:26 GMT
Last-Modified: Sat, 24 Dec 2022 09:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.newartexaminer.net/epidemics-come-and-go/
143.95.80.138200 OK 30 kB URL HTTP/1.1 www.newartexaminer.net/epidemics-come-and-go/
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (11586), with CRLF, CR, LF line terminators
Hash 8451966f4e5bb9c04804ec403233dca8
130ffbd70efed5f3a8536048dc51dd715eae6ecf
5211cd9603f2586574ca3533f9e5edfaac6f39fad4b1d377641e7b71dd34ab73
Analyzer Verdict Alert fortinet Malware
GET /epidemics-come-and-go/ HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 15:25:49 GMT
Server: Apache
Cache-Control: no-cache
Content-Encoding: gzip
WPO-Cache-Status: cached
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 24 Dec 2022 04:04:32 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
35.82.221.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.221.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AKHQ1G7aBhT8xFakFpimvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Vg17P+WTQxK9aM4zzv6oE2iqibc=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dc2725df0fb812e32298bb7faaf0c231
4ce4ac649b05b8eedab5bda51f4baf5f98417689
1a60eb1f9b71718c2061dfeb9de8241bef6fecab5d48adbc8ce3a89d1dddb8f5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 15:25:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dc2725df0fb812e32298bb7faaf0c231
4ce4ac649b05b8eedab5bda51f4baf5f98417689
1a60eb1f9b71718c2061dfeb9de8241bef6fecab5d48adbc8ce3a89d1dddb8f5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 15:25:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e91985c7db11ac10f4edbedf5e0a86ce
af63081a31cf76e569f5104914e69d8c061478c4
d650e3c7de65b1fefdf42243359e5107b60c1dd8f1ecda20f6535fb9720b24d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 15:25:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 14:29:36 GMT
Expires: Thu, 29 Dec 2022 14:29:35 GMT
Etag: "af63081a31cf76e569f5104914e69d8c061478c4"
Cache-Control: max-age=428024,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ea5a157cb30b49-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e91985c7db11ac10f4edbedf5e0a86ce
af63081a31cf76e569f5104914e69d8c061478c4
d650e3c7de65b1fefdf42243359e5107b60c1dd8f1ecda20f6535fb9720b24d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 15:25:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 14:29:36 GMT
Expires: Thu, 29 Dec 2022 14:29:35 GMT
Etag: "af63081a31cf76e569f5104914e69d8c061478c4"
Cache-Control: max-age=428024,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ea5a158df01bfa-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e91985c7db11ac10f4edbedf5e0a86ce
af63081a31cf76e569f5104914e69d8c061478c4
d650e3c7de65b1fefdf42243359e5107b60c1dd8f1ecda20f6535fb9720b24d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 15:25:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 14:29:36 GMT
Expires: Thu, 29 Dec 2022 14:29:35 GMT
Etag: "af63081a31cf76e569f5104914e69d8c061478c4"
Cache-Control: max-age=428024,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ea5a156c5bb529-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e91985c7db11ac10f4edbedf5e0a86ce
af63081a31cf76e569f5104914e69d8c061478c4
d650e3c7de65b1fefdf42243359e5107b60c1dd8f1ecda20f6535fb9720b24d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 15:25:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 14:29:36 GMT
Expires: Thu, 29 Dec 2022 14:29:35 GMT
Etag: "af63081a31cf76e569f5104914e69d8c061478c4"
Cache-Control: max-age=428024,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ea5a15afc3b4ed-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b9643a377daeefa9e867de25d84d90a4
7ab8aade6752606edfa9a6e68248fdbdca76dae8
0265378147b5eaa4ad2c4f570790b2b71b1abe8386e674c565bf0885396c04d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 15:25:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.wp.com/s-202251.js
192.0.76.3200 OK 4.3 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (9364), with no line terminators
Hash 20b7daba04c755576c4d207daa4b433a
5136c60b52b92658666638b91a538c2f18c584d2
8330d6a82c58f59f7d4b8d95634a54cc237c92ecc5972f120ff0fdf53956b02d
GET /s-202251.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Dec 2022 15:25:49 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-2494"
content-encoding: br
expires: Mon, 18 Dec 2023 23:41:40 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
142.250.74.35200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 26304, version 1.0\012- data
Hash 29404b5009a74d47f2a7923da5741fd5
c8c7a68af3f7e4f92d932203efda0c38e4d170ab
0b7e3af1cb23f3b1cc2c3418f3c31ab3bbadeaa2ba5e72f3cb818e4b44c420f4
GET /s/jost/v14/92zatBhPNqw73oTd4g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Dec 2022 15:04:23 GMT
expires: Sun, 24 Dec 2023 15:04:23 GMT
cache-control: public, max-age=31536000
age: 1287
last-modified: Mon, 11 Jul 2022 20:29:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 9527d889a5b94c28b4dcd8809ffba513
b2ee81348df6ebc3f72fcd64b7767df0a1903fb5
9d3cfbc6c96f2da85420d44bdd58f8e860487d3cbf1ffda4d21477b566f23059
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 15:25:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8455
Expires: Sat, 24 Dec 2022 17:46:45 GMT
Date: Sat, 24 Dec 2022 15:25:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8455
Expires: Sat, 24 Dec 2022 17:46:45 GMT
Date: Sat, 24 Dec 2022 15:25:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8455
Expires: Sat, 24 Dec 2022 17:46:45 GMT
Date: Sat, 24 Dec 2022 15:25:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8455
Expires: Sat, 24 Dec 2022 17:46:45 GMT
Date: Sat, 24 Dec 2022 15:25:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d8a813d-10ee-4216-bb6b-8bcd1d8141e4.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d8a813d-10ee-4216-bb6b-8bcd1d8141e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d90b80ebad103c48c3043c8d5e4c3ca
ab36c9309ce13b2a3d075461c2445f76bfc582aa
2287a6db0a6a58c570930c1f94c3b36d7acf383b26cdfa42261eb254598fa7c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d8a813d-10ee-4216-bb6b-8bcd1d8141e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7669
x-amzn-requestid: 4b35e79d-21c8-48d7-b11b-44bd820e29d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnnROG4UoAMFZdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a61f3a-765739ad7e9063781ccb12b2;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:35:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lhQA2yVBNtJ04goTms0KXhX6Q4v86TEe4EUioQs3eJzzMsCxbVmykw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:39:58 GMT
age: 63952
etag: "ab36c9309ce13b2a3d075461c2445f76bfc582aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe13fbed7-47cd-444b-bdd5-a6ea6c1102ad.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe13fbed7-47cd-444b-bdd5-a6ea6c1102ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da0372fd2038366c47d4eaff7e31c329
48a7cd1908c184cbecbb67fd3ec5e5a9208dadf0
f0e09b0931450057e6b5f7fdd6d73de0702b170497d7075464edc168ea74a4a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe13fbed7-47cd-444b-bdd5-a6ea6c1102ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11295
x-amzn-requestid: fb26918b-7ea2-4134-89d5-2d93fc250d7d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkr1ZHxToAMFnvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4f355-7b5d44017abbb9ed5348bb09;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 00:16:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: No42EoC9OuoVPD6lbQ3yqj_cdmhkHwfErYwPjsdMTBP2EEoIPVyyMw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Dec 2022 09:06:19 GMT
age: 22771
etag: "48a7cd1908c184cbecbb67fd3ec5e5a9208dadf0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2d4cf077d410b94f1326e942304f9e9b
98fb13feecfada3cc8b467aa48d7cdf1ed8ab001
ec82cd83bfd4da849888b0535c9764cd4d462ef9e12c5934512858375908dfe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5659
x-amzn-requestid: bc225a93-868b-42d4-aa94-c8fa16ef2c64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dk33gHUqIAMFg1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a50696-7710727f0f086a791a0e7939;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 01:38:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Es7YaIRVfiybyKGY41ZE5UYSN0bfn6LmOUqcYZASi9QsXQqR9NSwTA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Dec 2022 07:07:36 GMT
age: 29894
etag: "98fb13feecfada3cc8b467aa48d7cdf1ed8ab001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e532075-b8a0-41ff-8f08-8512cbb1b3d4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e532075-b8a0-41ff-8f08-8512cbb1b3d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3071a834e874a992c3b14f7a3f91b30f
559014c7e6e5019097b7da8b3a820a80a1f55b6c
4f8e29303936b4168f0ad765d8a2773a7247f249396147f68f6f9639b1ad1208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e532075-b8a0-41ff-8f08-8512cbb1b3d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10356
x-amzn-requestid: 32dbf731-a18f-4150-b3cd-f30d2ab3c6a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnoi1GY2oAMFesg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a62145-55a5f14a6ea6e7dc3754a8be;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:44:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DC1Eu98-ihibH4I6ZY03Af2PxBrywSyjnoJRR2N453KiYvsa6hGefw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:49:04 GMT
age: 63406
etag: "559014c7e6e5019097b7da8b3a820a80a1f55b6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e91985c7db11ac10f4edbedf5e0a86ce
af63081a31cf76e569f5104914e69d8c061478c4
d650e3c7de65b1fefdf42243359e5107b60c1dd8f1ecda20f6535fb9720b24d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 15:25:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 14:29:36 GMT
Expires: Thu, 29 Dec 2022 14:29:35 GMT
Etag: "af63081a31cf76e569f5104914e69d8c061478c4"
Cache-Control: max-age=428024,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ea5a154ef3b517-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbf0437-e3f8-4c0c-ac43-11a9d84659cb.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbf0437-e3f8-4c0c-ac43-11a9d84659cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b92387330acabeb3e5475a52f789314e
c27aa6c638e130063905e556d5d2213dcadb690f
b67e7688d3ed7d4a7aaa9bae8c083f296ed9f52986e8bddbcc93ac13ae02a6af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbf0437-e3f8-4c0c-ac43-11a9d84659cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4576
x-amzn-requestid: 81468234-ef31-40ad-b003-2d22e8fd2ef8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnnpAGi8oAMFXBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a61fd3-0ddf619f2677a5a134334202;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IxJvwJFHYzKzXY7mfM3nIRaRoDVu3auCR-dYq-zI_v77uau1cRT1LA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:49:04 GMT
age: 63406
etag: "c27aa6c638e130063905e556d5d2213dcadb690f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ebee3d-1399-4100-87ce-23d8990b97d2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ebee3d-1399-4100-87ce-23d8990b97d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33d7fa2f0af62e65eb23c36297749038
d28362f2babfde4ca02f309b80be75bfc520de9a
070da72e06d4492a954b130ff6bef5ca5fd625f0fcfee81e801ef26a03d07e2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ebee3d-1399-4100-87ce-23d8990b97d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7478
x-amzn-requestid: b9f7f6d8-fada-45fd-80a7-3ac122dae6fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnoYlEbVIAMF_lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a62103-15601045320b166c295d24d2;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:43:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1lxJbDYXaWwexDy9roJuh8FUu85Vi7qHtkZYBze8SbE2dWCCxH7duw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:49:01 GMT
age: 63409
etag: "d28362f2babfde4ca02f309b80be75bfc520de9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1
143.95.80.138200 OK 564 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1
IP 143.95.80.138:0
Hash 52dc6a8e85abdf73203fdae4e4b6f9fd
d19e874bdab0b560891082c591b33b7a481149f7
a6ed9df694f9885f6959a20b8aa2090235427dd579b89eed311fbad2d70cfce7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 564
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
143.95.80.138200 OK 1.3 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1298
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/css/classic-themes.min.css?ver=1
143.95.80.138200 OK 189 B URL HTTP/2 www.newartexaminer.net/wp-includes/css/classic-themes.min.css?ver=1
IP 143.95.80.138:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 189
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
143.95.80.138200 OK 3.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash a6099ee677b6d930b6b878cf0cb08422
a2eb69454196d4250d624d25aaec587e97686642
755acd6dc98e63baff6d8b105b1bcaf63b79f935381fb3f32a79dace7faae0ac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2985
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.2
143.95.80.138200 OK 3.1 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 97f3e7860b3e0d99f3c0327b0045363a
885af5049143e765b7fd0f3a0a860613b05d12d1
ff05d291dd422f8bee80e816eb1480c67fb3e0d6071bebd8f04c86de87a70080
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3086
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
143.95.80.138200 OK 3.2 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 143.95.80.138:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3239
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/css/fa.min.css?ver=7.5.2
143.95.80.138200 OK 2.6 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/css/fa.min.css?ver=7.5.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (7867), with CRLF line terminators
Hash b46be9f43a17e1458c90c2671509d27a
faa5d8b4282b737a726ea8858f63a6558633b123
46ba7713db9ecca7f8d8356db2f36b7a62eaaf583b92584940ec459e5fd2fc0c
GET /wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/css/fa.min.css?ver=7.5.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Dec 2022 12:38:26 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2606
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1
143.95.80.138200 OK 440 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1
IP 143.95.80.138:0
Hash 3f87dda45a8d385aa21e4ec08eaf1661
1088a95c2735ed46880fa118520a6481cb022940
09a1954fafdecb132f2d2bcfd7dca277a394ac10d2cfd302378c35c10269ad0c
GET /wp-content/themes/chromenews-pro/assets/sidr/css/jquery.sidr.dark.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 440
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1
143.95.80.138200 OK 6.6 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1
IP 143.95.80.138:0
Hash 5b7a3b1c854dcfff603901e72b9ff63e
db47a6756f6010af5863797aa48db30446af2d96
730dfcce032719acc5d1f0ab03165949f31a231ac7471e2b55635b0b2337d0f7
GET /wp-content/themes/chromenews-pro/woocommerce.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6561
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/wpdiscuz/assets/css/wpdiscuz-combo.min.css?ver=6.1.1
143.95.80.138200 OK 8.5 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/wpdiscuz/assets/css/wpdiscuz-combo.min.css?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (22067), with CRLF line terminators
Hash 078fd040354b7ecf4c7d8f1c8e9535bd
1da1081ee03664026d9e6dbb86cdb7a98cc647a0
acb8a2899702c175afa7d2d44145a8f0694c9cff1a28eeb351e5c784f39caed5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpdiscuz/assets/css/wpdiscuz-combo.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Dec 2022 12:38:26 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8514
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
143.95.80.138200 OK 299 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
IP 143.95.80.138:0
Hash 1e34ceaa9a4c96c3499483f5fe818671
55a92f1196d0155e2bf0632f0905b5b8000f5ad7
9738e8e5222b5802082be7a77e56ad9fdee06718da410f356504184fd08b56bf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 01 Nov 2022 07:58:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 299
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.2
143.95.80.138200 OK 1.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (1668)
Hash 0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1000
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1
143.95.80.138200 OK 2.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1
IP 143.95.80.138:0
Hash 5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/magnific-popup/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2190
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1
143.95.80.138200 OK 13 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/css/all.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215
143.95.80.138200 OK 417 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215
IP 143.95.80.138:0
Hash 73f7704398d8f6be9748d30791950984
3231f3786c364c7665cd7123d8fae0f42bbfd836
c1d9b23aff05fb52e5d6e68aff86d808097185c6dbaac6c3fc3ec6e5bea31ef4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 417
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.2
143.95.80.138200 OK 764 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (1241)
Hash 812e16a021ec2bb90b319d5ccb346473
47bfe8994777dd4ba6f68ed8904005cca152b3d0
5edafb1d91e3eee0d00462e5b6c8153ee380df5447dc6adc62264428839e7542
GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 764
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.2
143.95.80.138200 OK 1.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.2
IP 143.95.80.138:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 1d43db37790e13f685a3c696579e3b2c
ecd7d8bcf06c069e2f296726649b6959608abfbe
4207a6e0849fcaec34e8b6de5931cf3158aca1121c232039654b4144aea9552e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1203
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.2
143.95.80.138200 OK 1.1 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 769e9d3f7fc383ec1a02024e39730474
4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1093
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.2
143.95.80.138200 OK 792 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 792
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215
143.95.80.138200 OK 1.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215
IP 143.95.80.138:0
Hash 28b80aaf2ae2ef0de0d59144ea1a723b
b2d3ad6f06985a17a600b1b5fe2d160eee947303
aaa489d95f9aa848c37d2c39cd96ddcb82e881d69a14965f79692f90cc8ecf3b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/js/navigation.js?ver=20151215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1168
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215
143.95.80.138200 OK 473 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215
IP 143.95.80.138:0
Hash 26efbed194dd965ba75f23e3a55036e5
16ce4e3416f598667a658dd21b0750e46456fcfd
7c3bac7d992586c141a8ee28e8ad8210797c8404294b12c9390f86b6632b4f8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/toggle-script.js?ver=20221215 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 473
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1
143.95.80.138200 OK 1.3 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document, ASCII text
Hash 9007b86678fe78c2c6f513e9dbc72988
3cabd71ed515bc00f72b63d1b38f62fda83c3263
87d0b19ea0085600a50a3083a086c3c894e436e459354b3764fb531c7736f9d9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/video-script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1263
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198
143.95.80.138200 OK 12 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198
IP 143.95.80.138:0
File type ASCII text, with very long lines (53538), with no line terminators
Hash 8d812e2a2f416754e36e3ac4445faa8f
fda9b9a736c253e8c14f38bb7d0b7e88a40214a2
6e3370b8614cb5e7e982288482c228c0e3b55e84dd3002e2c2a9343795de82f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1646827198 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11590
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
143.95.80.138200 OK 2.1 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 143.95.80.138:0
File type ASCII text, with very long lines (1648)
Hash 43ba91729c8e1b82b1c8507fed68238d
61d3f5fc2b1e61e01a8e011182d15fc5873d9756
1d1254d666fb9c4a9692bc62acaadf8a2b563e031452891b0416eebb6fcf03db
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2067
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1
143.95.80.138200 OK 12 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (53538), with no line terminators
Hash 8d812e2a2f416754e36e3ac4445faa8f
fda9b9a736c253e8c14f38bb7d0b7e88a40214a2
6e3370b8614cb5e7e982288482c228c0e3b55e84dd3002e2c2a9343795de82f8
GET /wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11590
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
143.95.80.138200 OK 2.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
IP 143.95.80.138:0
File type ASCII text, with very long lines (2203)
Hash 15d8507ec275c1e0a742edbbd30f8abf
2ce02da11216741c3a4d9211f733e9e08fb4080a
5ab7071ba6e6fa64494528fb3d422690cc2783d75c95dc47825c663515e4991b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2233
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1
143.95.80.138200 OK 2.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (1394)
Hash 3775ad9007b26796b38aa68a14dee3d4
ee286755529979a9e232393eec913ba56be0a74f
fbf2a2a0839e6dd464755088a5f741dbeb3241eeb13619fc6bacd49df9c6da59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/dist/block_animation.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1979
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1
143.95.80.138200 OK 2.3 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (2123)
Hash dee84e0e8c2af40d94bc266e07f22dcc
7c44228095fb1748c0b268bc3b891175339d54c0
dfaf608af7307c78d7454a898c3aafe000b7f430645e1e7c47a0090108f43e0b
GET /wp-content/plugins/blockspare/dist/block_pagination.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2318
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.2
143.95.80.138200 OK 13 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.2
IP 143.95.80.138:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 506114e76608d2cb13e2ae2bcf067c7e
7ea05a51a05343a1b32e7c886add36971a788133
0b16be7c9d35f598d1cb5b6c9a42088aac3245180430e6583984f03b1ff16bd6
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13258
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1
143.95.80.138200 OK 2.0 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document, ASCII text, with very long lines (5370)
Hash 3a4df14b2d3a105a5c3c83c60e5a395d
e17ca5900005e101ef43c06b325c979d14c61a01
163097050bf30d22911faff62f3c165e5a15c2c4d268311618d8b97dac9710e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1975
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1
143.95.80.138200 OK 1.5 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (521)
Hash a7e596dd85011b4d41c1db9a87d79f3a
a7b716d860459ddec30bd14de57f98926d8a59e9
5afa336dd99a71d0f289ce7cbc29a1fe95c1d30e695b1f4ba6fe181515542916
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1469
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/pagination-script.js?ver=6.1.1
143.95.80.138200 OK 1.9 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/pagination-script.js?ver=6.1.1
IP 143.95.80.138:0
Hash 7ab73cb7e551661d4d2301834625a001
0cd603f37e2172cfb3931e304e012d7ebc333126
dc4b6ef5e4e9d06fb22ebd4e2ee1eeb4209fe59f418f908b81ef8c9a0695206a
GET /wp-content/themes/chromenews-pro/assets/pagination-script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1940
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
143.95.80.138200 OK 1.9 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (1213)
Hash 4e6eb90cdc53afa49155da2cdbd1a972
d6257567a399e268f467c449e6c79189f0c5d48a
658946e90cb47ac0f6095df70ce448196a05a719dce088f2870e1feb92af9b2c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1882
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
143.95.80.138200 OK 1.8 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 143.95.80.138:0
File type HTML document, ASCII text, with very long lines (928)
Hash d4be843407f67bb7c7b180d09e3254b3
71bcd2917d6f2866759b8d4706b5d85eb97bce8a
524e0446bd0a4c245c2f7531c2213ac0a5f172ebe2ea8b33a672521af8dbe250
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1829
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/imagesloaded.min.js?ver=4.1.4
143.95.80.138200 OK 3.5 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 143.95.80.138:0
File type ASCII text, with very long lines (5499)
Hash 6c742a5f0977ee6d71c30ab689ce6667
48ebfee62ba55bc2afa998afa4e6f39f6ae9a566
9723ea8a25d49765a83022d733e010d058b8322d17976e436885aab782f02cab
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3461
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1
143.95.80.138200 OK 3.1 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (5920)
Hash 87987fc2ba1ba42adf5ce7810b7c7a0f
ba9dded9b006a61854f052f3fc624a8bdd1d58f7
a76f3a72ff6178144e5f1b49570a0a1d5bb2c4bd2716f8c210a6b0bf87e8d92f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/dist/block_frontend.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3089
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1
143.95.80.138200 OK 2.8 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (4530)
Hash c8124a7ca10300db7eb4d3ca3daadece
b8ec0efcd940aa7abeefa48a612d6ee22bd17af6
97f7db24ad22ffd1ae7193adf2d44907bb6e6be314affdd541434529ce4302c3
GET /wp-content/plugins/blockspare/dist/block_tabs.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2753
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1
143.95.80.138200 OK 2.9 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (6911)
Hash 5b7cdabef69a55122084e96e19596234
5344eaa4b464655c5d6342096bb49af510756171
aaebcba2a5263898d2a770433eb22fb6b12d116d846b6ee7285cf2d3fa6c26a5
GET /wp-content/themes/chromenews-pro/assets/sidr/js/jquery.sidr.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2869
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1669974803
143.95.80.138200 OK 3.8 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1669974803
IP 143.95.80.138:0
Hash f9268f55c60696fbc3c26f5270021a49
8bde190c618180c73bbadd13456d200e3dc4e2a6
ccea2138c659f79543dfc4c93d09906c57950c8ed4c379fe0804a0a8341e2cc0
GET /wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1669974803 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 02 Dec 2022 09:53:23 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3831
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/comment-reply.min.js?ver=6.1.1
143.95.80.138200 OK 2.8 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (2968)
Hash 4551e26987b3ef030e0fbe42baa9023e
58dbcf93d3a20207ef964618a098616b39235ba4
55951b4217587cdd6c53e3133692168b4cd19e6cf785f6e113b9a79fb62f377d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2842
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.2
143.95.80.138200 OK 3.9 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (9111)
Hash a9d79ad492f5d209828cf75ff095edb0
b969ee59c642ce462a2cea6b487f2b1d57a8a18a
c362ad1758080d8a6214b29639dd88f082394a603d4afa9f12d8a037f55f94e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3949
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
143.95.80.138200 OK 3.9 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP 143.95.80.138:0
File type ASCII text, with very long lines (6216)
Hash 9e037ee656ce83e5dfadecbfd72fce87
2e8871959ce54c056411d246884e6a9224434211
4bc49743b68a0919021273b6d06301c9771ab62d0abe340a07021aa9624c940e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3902
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
143.95.80.138403 Forbidden 6.1 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (481)
Hash 080745182ec64ad1eef75e561abcb8f1
75d21e720d10ef11dde6be4251a426e45fa85485
589a46931de5754e4f14601d4348b79a9d658d832ae75e0f7a55732cbaf53fd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
last-modified: Wed, 14 Dec 2022 16:56:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6083
content-type: text/html
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
143.95.80.138200 OK 6.0 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (11126)
Hash db78b857e1ff11330ff1cd1d3ad8dce6
557385dd3c12e7710fbf509366461a5791907edd
f208690329ec827d1b605a882df5625952b80f17c28870b3b03984d01a539c90
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5989
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1
143.95.80.138200 OK 6.4 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1
IP 143.95.80.138:0
Hash cd4783942fbe8d66614e035abeefe2fc
8540140a45035d2889e6a9ab4a3e081853a31840
5fa2614d6f009cd70eaf3a3818261acf4dd118d9c05c497ef686b729ea14e3b2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6356
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1
143.95.80.138200 OK 6.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1
IP 143.95.80.138:0
Hash d85ca4599d1681168ce9958e29ab7ba5
db53d41dcf4c4a4b87d4aa6df0bad47720520800
f930df833554db19e1a5974d770f12db5f8a1e26f08202e449d76ebdd274dc67
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/marquee/jquery.marquee.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6205
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
143.95.80.138200 OK 6.7 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (15660)
Hash d836011e55f3a3187f15314b0adefef0
1a96bac7e1946c5d5bd4cf0765a531f0ed64c97c
b81852c67f500f22d6587677acd4d9837589d65c4203e49a709fa5c2d42ff05f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6701
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
143.95.80.138200 OK 9.2 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
IP 143.95.80.138:0
File type ASCII text, with very long lines (20089)
Hash d743c1730ad81ac54baffad2616b1455
22db04674a2e5a136b2e355179c39d29112ea8a6
b3fac8c89f18b4523294e28ac7bdb5a2567d478b6f87c45ee35534d0227f0cdd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9207
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/masonry.min.js?ver=4.2.2
143.95.80.138200 OK 11 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/masonry.min.js?ver=4.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (23988)
Hash 12bbba0cdbcef081825eb63361e4921e
47686cf10c3057813d73733c3d49eaea529851a2
b1a6add1fd271acb8663f953d285ce73099d22dc3a566999c6ed326c8332b395
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10612
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2022/03/headercn.jpg
143.95.80.138200 OK 22 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2022/03/headercn.jpg
IP 143.95.80.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1500x400, components 3\012- data
Hash 78433bd72b52bcc147e986d4ae2aa4b3
f0e4bad3dfb61845bdabea9711c8a00d4d513367
9ae9fdedf4ded881b35629022d51b6873e5fc3c893ba94b40728603c36bfedaf
GET /wp-content/uploads/2022/03/headercn.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 10:48:59 GMT
accept-ranges: bytes
content-length: 22079
vary: User-Agent
content-type: image/jpeg
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1
143.95.80.138200 OK 14 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1
IP 143.95.80.138:0
Hash 10b549c113cb2e401622e3cba611ecc4
f406f9487c25b8f6cd98f5341a26b4f09afb321f
79188f858a09d22e9f022dd3f86fb6feaba251cc72864e286874169562048b02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/script.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13849
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23948, version 1.0\012- data
Hash aeb92e524ca62170347fa63974605767
1e10bfbd720481e42035a5469d7ce8fc51d34aab
25475d82cc976fb2c71b15b3e416c22bf636dd247bbb268d312e7c076ec5b6e4
GET /s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Dec 2022 21:35:36 GMT
expires: Tue, 19 Dec 2023 21:35:36 GMT
cache-control: public, max-age=31536000
age: 409818
last-modified: Mon, 09 May 2022 19:47:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notoserif/v21/ga6Kaw1J5X9T9RW6j9bNfFImajC7.woff2
142.250.74.35200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/notoserif/v21/ga6Kaw1J5X9T9RW6j9bNfFImajC7.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 21916, version 1.0\012- data
Hash 4b63cb477ab7d5e6977a788100ae58d5
c6e58ffe35827e911091dfbe4447b9902406c9d0
b5bc6e295567ab6723e8b71b9cebbaf12239f9a94c804af09e57412ce70c3177
GET /s/notoserif/v21/ga6Kaw1J5X9T9RW6j9bNfFImajC7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21916
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Dec 2022 22:43:04 GMT
expires: Sun, 17 Dec 2023 22:43:04 GMT
cache-control: public, max-age=31536000
age: 578570
last-modified: Mon, 09 May 2022 19:18:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.2.2
143.95.80.138200 OK 1.3 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.2.2
IP 143.95.80.138:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 23030da399d26bb36e2effda3c58d488
2480e4b14c65a29b6013515cea8a55a6646aa85a
026d41f0bbec9c4116e05c06d43d3bbae4e9ec0975f84140565760431eaa88d7
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.2.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Cookie: PHPSESSID=c4818353d725e2f2e1dc64acaa7e9414
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1294
content-type: text/css
date: Sat, 24 Dec 2022 15:25:54 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 27456, version 1.0\012- data
Hash 80becb8b7638756b35eebf31518f8904
ba154f44545a98796887a9b5cfd84d765d3d0c05
a0a9ce1553fa74dad4d8cf55b7df7d012a3acdec01cd39d682fce0e5b52e99f2
GET /s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Dec 2022 21:36:15 GMT
expires: Tue, 19 Dec 2023 21:36:15 GMT
cache-control: public, max-age=31536000
age: 409780
last-modified: Mon, 09 May 2022 20:10:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
143.95.80.138403 Forbidden 6.1 kB URL HTTP/2 www.newartexaminer.net/wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (481)
Hash 080745182ec64ad1eef75e561abcb8f1
75d21e720d10ef11dde6be4251a426e45fa85485
589a46931de5754e4f14601d4348b79a9d658d832ae75e0f7a55732cbaf53fd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/simple-ajax-chat/resources/sac.php?ver=20221003 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Cookie: PHPSESSID=c4818353d725e2f2e1dc64acaa7e9414
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
last-modified: Wed, 14 Dec 2022 16:56:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6083
content-type: text/html
date: Sat, 24 Dec 2022 15:25:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.woff2
143.95.80.138200 OK 77 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
content-length: 76764
vary: User-Agent
content-type: font/woff2
date: Sat, 24 Dec 2022 15:25:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff2
143.95.80.138200 OK 78 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
content-length: 78196
vary: User-Agent
content-type: font/woff2
date: Sat, 24 Dec 2022 15:25:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff2
143.95.80.138200 OK 13 kB URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff2
IP 143.95.80.138:0
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: https://www.newartexaminer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
content-length: 13276
vary: User-Agent
content-type: font/woff2
date: Sat, 24 Dec 2022 15:25:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
143.95.80.138302 Found 247 B URL HTTP/1.1 www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
IP 143.95.80.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6b9cc8f4862461fac4b491b525cc1d49
143a6424a73c3ca3651c4f75dc347deced5fa71d
416557af31c1a6a8cdde9fb76644bf9c077351037f50e3c91f5e5119701253b3
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://www.newartexaminer.net
Connection: keep-alive
Referer: http://www.newartexaminer.net/epidemics-come-and-go/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
HTTP/1.1 302 Found
Date: Sat, 24 Dec 2022 15:25:55 GMT
Server: Apache
Location: https://www.newartexaminer.net/?wc-ajax=get_refreshed_fragments
Content-Length: 247
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.newartexaminer.net/wp-includes/js/mediaelement/mejs-controls.svg
143.95.80.138200 OK 1.4 kB URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mejs-controls.svg
IP 143.95.80.138:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597)
Hash d82444778486713d21d76c4b37861ee8
75062c49164162f25a0326d7fa6b97a3b1e0091c
261e21aa3e3a7c9ce04855161ea26dc34b2a19541ee92627c321d4a362a4c90d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.newartexaminer.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Cookie: PHPSESSID=c4818353d725e2f2e1dc64acaa7e9414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Aug 2017 04:43:51 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1392
content-type: image/svg+xml
date: Sat, 24 Dec 2022 15:25:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-32x32.jpg
143.95.80.138200 OK 1.6 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2018/08/cropped-512x512-32x32.jpg
IP 143.95.80.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 32x32, components 1\012- data
Hash a89996024d27731a68a32f80c77ecaee
776d0a080539702cafd7675dc68da6c60d802e77
c6bf2abe8b54ae3c9b17a64a8f3b06745b0aad9da66bd45251c2cf5cf31d81e6
GET /wp-content/uploads/2018/08/cropped-512x512-32x32.jpg HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Cookie: PHPSESSID=c4818353d725e2f2e1dc64acaa7e9414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Aug 2018 18:08:39 GMT
accept-ranges: bytes
content-length: 1630
vary: User-Agent
content-type: image/jpeg
date: Sat, 24 Dec 2022 15:25:56 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
143.95.80.138206 Partial Content 517 kB URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
IP 143.95.80.138:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 517 kB (516834 bytes)
Hash 6266297ac2ce60bc1450b934685d079f
7d5c347661c0b3f2dadc2d34a6e92efe536d979c
777abff004269edd302ad27e86c3b9278580663b94c0375054d2c66e33358df9
GET /wp-content/uploads/2020/10/Utah-Art.mp4?_=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Cookie: PHPSESSID=c4818353d725e2f2e1dc64acaa7e9414
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Fri, 02 Oct 2020 08:18:51 GMT
accept-ranges: bytes
content-length: 46774680
vary: User-Agent
content-range: bytes 0-46774679/46774680
content-type: video/mp4
date: Sat, 24 Dec 2022 15:25:55 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext
IP 142.250.74.106:0
GET /css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Dec 2022 15:25:49 GMT
date: Sat, 24 Dec 2022 15:25:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
IP 143.95.80.138:0
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.6 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Dec 2022 11:47:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/style.css?ver=7.5.2
143.95.80.138404 Not Found 0 B URL HTTP/2 www.newartexaminer.net/style.css?ver=7.5.2
IP 143.95.80.138:0
GET /style.css?ver=7.5.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
wpo-cache-status: not cached
wpo-cache-message: In the settings, caching is disabled for matches for one of the current request's GET parameters
link: <https://www.newartexaminer.net/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=c4818353d725e2f2e1dc64acaa7e9414; expires=Sat, 24-Dec-2022 21:25:52 GMT; Max-Age=21600; path=/; domain=www.newartexaminer.net; HttpOnly
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
IP 143.95.80.138:0
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/chromenews-pro/assets/bootstrap/css/bootstrap.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
143.95.80.138206 Partial Content 0 B URL HTTP/2 www.newartexaminer.net/wp-content/uploads/2020/10/Utah-Art.mp4?_=1
IP 143.95.80.138:0
GET /wp-content/uploads/2020/10/Utah-Art.mp4?_=1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Cookie: PHPSESSID=c4818353d725e2f2e1dc64acaa7e9414
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
last-modified: Fri, 02 Oct 2020 08:18:51 GMT
accept-ranges: bytes
content-length: 46774680
vary: User-Agent
content-range: bytes 0-46774679/46774680
content-type: video/mp4
date: Sat, 24 Dec 2022 15:25:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/plugins/blockspare/dist/style-blocks.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/wpdiscuz/assets/js/wpdiscuz-combo.min.js?ver=7.5.2
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/wpdiscuz/assets/js/wpdiscuz-combo.min.js?ver=7.5.2
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpdiscuz/assets/js/wpdiscuz-combo.min.js?ver=7.5.2 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Dec 2022 12:38:26 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 143.95.80.138:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 09:08:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 11:59:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/themes/chromenews-pro/assets/bootstrap/js/bootstrap.min.js?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-content/themes/chromenews-pro/style.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-content/themes/chromenews-pro/style.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-content/themes/chromenews-pro/style.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 09:25:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.newartexaminer.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
143.95.80.138200 OK 0 B URL HTTP/2 www.newartexaminer.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 143.95.80.138:0
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.newartexaminer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.newartexaminer.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 10:14:15 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Sat, 24 Dec 2022 15:25:50 GMT
server: Apache
X-Firefox-Spdy: h2