Report - newsinsightloop.com/

Report Overview

Visited public
2025-03-14 08:08:25
Tags
URL
newsinsightloop.com/
Finishing URL
newsinsightloop.com/?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Title
Top news of the week

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

104

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
newsinsightloop.com	unknown	2025-01-28	2025-03-14	2025-03-14	33 kB	1.5 MB	104.21.80.1
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-03-12	479 B	23 kB	142.250.74.10
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-03-12	2.2 kB	164 kB	142.250.178.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed
2025-03-14	medium	newsinsightloop.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	From	Size	First Seen	Last Seen
	newsinsightloop.com/_nuxt/DkWsm13h.js	ImportedModule	459 B	2025-02-04	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/DkWsm13h.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-04 07:26 Last Seen2025-03-14 08:08 Times Seen10 Hash c736c6fd7e30c77b64d44db2e79e0fc5 910622a7dcaa2e985d451a7d11e957eea7b0cb01 3bacf262a7344ae1fbdb723e515fefd941333fc2c7acd9be36b31304b9b88c97 Loading...

	newsinsightloop.com/_nuxt/DjgiEest.js	ImportedModule	416 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/DjgiEest.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash ca98696f60626b900128fed8fa5ce190 99ceaa5ade89764983b3711695bec8d394ebf3dc ce4a8df330fa3427b4843df78f2f169c20b0492a8f45be9a2f018c8786f0d60c Loading...

	newsinsightloop.com/_nuxt/Bg0dBfJm.js	ImportedModule	404 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/Bg0dBfJm.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 6a65a981b3cb63bcdbb655713e83cbb6 13c026748c7ce23ec780e06d90dc84f3e2ae0b5c 37d6301425b2bb1fa175b2cddea2656164ccde7d05ce02630e64e1063f895852 Loading...

	newsinsightloop.com/_nuxt/BFN_TH8r.js	ImportedModule	1.1 kB	2025-02-04	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/BFN_TH8r.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-04 07:26 Last Seen2025-03-14 08:08 Times Seen10 Hash b95cdf61e2a693f63758808534e4d2a7 376e924656ba96baf5b63dbd06688d3830917484 30d1c2bca36e19821ad3697aa0d53788e8fba8d5474bc09809fe8f5e736ebc7e Loading...

	newsinsightloop.com/_nuxt/DkAQHIF8.js	ImportedModule	6.9 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/DkAQHIF8.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 325a4eee0cf6c5479d9b7bee8334167e 1a1004e91f1402c813aeed60f41a77d0d807e212 6c305cfc7ce2ec832b683c665f2a91dbc0f8d1e3cecd25453001042116791f7c Loading...

	newsinsightloop.com/_nuxt/B7OiHZyP.js	ImportedModule	8.0 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/B7OiHZyP.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 609b18ac6a3f390cc0c8f549e50119a4 cd644587e344b030bf2cd1dcd3683f20b38c46db 654ab9e875e66dfc9ef6ca1b89cf9f2d6aa4ed65a637c512700e8e364ba75419 Loading...

	newsinsightloop.com/_nuxt/Wuh8dBOn.js	ImportedModule	899 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/Wuh8dBOn.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash cfd71cc23601dda5827dc1ee2d4a21e5 d4e1b4ceb3cac1c06f33a8ee420ab1e45697f1eb 570bcc87cf8c276b6051dedee4ec327b0d69b01bc7f3da0028e1af19376b5033 Loading...

	newsinsightloop.com/_nuxt/DgGzilZG.js	ImportedModule	2.9 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/DgGzilZG.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 015fb805707d28f92ece7209bb620bef 33d4a5d8de098d0aeae6fd482fd48a7fb46a7ae5 940938a1dabef5a0a2f20b65405189d78ffc750911d1b66b351cf1e5132d857c Loading...

	newsinsightloop.com/_nuxt/cKozo6im.js	ImportedModule	413 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/cKozo6im.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 4c37a06be32a50804472c9cb69096c0c 04d554a60218b3ccdcd1781b26fd0ed72ffde243 f1960f8e87fafffc64f4f7d4f72582da03fdb4a8b6aae9c85518ecaabea1a259 Loading...

	newsinsightloop.com/	ScriptElement	81 kB	2025-03-14	2025-03-14
Pretty URL newsinsightloop.com/ IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-14 08:08 Last Seen2025-03-14 08:08 Times Seen1 Hash 31869f1db7fcbd8695005aa0f4ef150d cbf76ffcb0fa2994d57d473c04fe3160b607fa08 4e8e03618a50a2606f0286a62b1d2f557ca17a6f577ccc7e4f52143d88a7d48a Loading...

	newsinsightloop.com/_nuxt/DhvqLkXM.js	ImportedModule	5.9 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/DhvqLkXM.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash e602eb3258df3941125f5163297a2333 5d68582969142a9f4d0a8248c7694310f1662db7 d4adaec3936dd157da6b9cb7e9ba58d77946d5086755659d1fea349e66121527 Loading...

	newsinsightloop.com/_nuxt/Dpf3cYHA.js	ScriptElement	664 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/Dpf3cYHA.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 2e2b5e22c64ea4d1abf962f59e5fb66d 6ea852fe4f2ffa37b1c35a4369c20662d7277867 fce3072ef6a67b2ace826227a4c984b079c818eb65060963ddff6bac642b82a8 Loading...

	newsinsightloop.com/_nuxt/DKkicVU4.js	ImportedModule	7.6 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/DKkicVU4.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash d0a850a9ea9013cdea14839e7544ddbe 15d3418a63e85b0a9a935d65b4ff76fa74b596c7 97a8f239a747755a0ec07ad309c3f5eb01e1681ee3bc8701e96a2148449971c9 Loading...

	newsinsightloop.com/_nuxt/DmOA6rHe.js	ScriptElement	765 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/DmOA6rHe.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash d9fd37e327f6ba76ddb5bae7458b1120 6806584be80f26a2b5fe86eb46c3fdfc1ec02cd1 b4d9301231f90e3f412bb11c807f197300ca63c303e96714070f58458e9ddfcc Loading...

	newsinsightloop.com/_nuxt/B-KmEECH.js	ImportedModule	993 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/B-KmEECH.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash f96ed809caf78856448d136576957529 fa160dadcff181b34f1534eca7b9c6e77ec15dc1 d9c0afa5f618ae77386256c4c81e8b4b236f26898a26cc1bd0ef8594d41f4830 Loading...

	newsinsightloop.com/_nuxt/6eyK98wZ.js	ImportedModule	1.2 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/6eyK98wZ.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 93b78d60b0e2fe48c7b6bbfa17622a33 f6aac77adacc86b06ecf896a82841c908dcdda11 9639fef3979452bc7394b79f4ffb16a3ef210ab8830ab8dcc92a29c31659ca0f Loading...

	newsinsightloop.com/_nuxt/_f5lrSdb.js	ImportedModule	620 B	2025-02-04	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/_f5lrSdb.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-04 07:26 Last Seen2025-03-14 08:08 Times Seen10 Hash 5d2b757bb02d5f31f040765281652a3c c4d1853865ed85e7b4b97329fd8d8e070773e2d6 c867c2fc8658cbc542681b34ef6bc86a5022872c68e7b264adfbbfdc1014495d Loading...

	newsinsightloop.com/_nuxt/BhMTL-VT.js	ScriptElement	279 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/BhMTL-VT.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash a97101f6c55682f8eb2c9558ccc3f40a 7f6202f5b43a53f577cd987a3febf73ef1071ec6 286eadf5bc211091b84a6e06464e849c60d2cc7489ab78c6d1bd4b385edc73cf Loading...

	newsinsightloop.com/_nuxt/CEu4zQxt.js	ImportedModule	20 kB	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/CEu4zQxt.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash ef3a450069ec1aff3fb3a56ca3a465ec a50c1275394039e17293c49b0a903ee6b2c4a7d8 86cac77827dbf7501c1cd7ba380c99be981d84d171ad6fb1d76b22ad3583be30 Loading...

	newsinsightloop.com/_nuxt/BpoD2wcn.js	ScriptElement	5.1 kB	2025-02-04	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/BpoD2wcn.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-04 07:26 Last Seen2025-03-14 08:08 Times Seen10 Hash c54947325660b74cca360aa0b995a794 e5c6e976a1058d9108b17034bde6141d3e8ba3a5 028a95db1b1148e66ddc9573b79f15cbfadb83e2d2677bd4712fcfdb9af8138b Loading...

	newsinsightloop.com/_nuxt/Ve6uEh7f.js	ScriptElement	386 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/Ve6uEh7f.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 4581f427db5d7cf32392bb8a23953ef7 55edd171817b59d0fc0334c144e85e5f57fe04ea bff5c4a70a49e2e9c52d114d33d4d6143e31563166a1397ba10f7363f6fda238 Loading...

	newsinsightloop.com/_nuxt/BgTHKnlH.js	ImportedModule	417 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/BgTHKnlH.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 45f4275fa8b953c5aa949b7b343c7ce8 23d4385b15c4da12a7f170ccc8cdd4c07020416a b3d094d446574210dea8546c26db2276051b89c8eb40c3894e279e2af601e301 Loading...

	newsinsightloop.com/?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42	Eval	60 kB	2025-02-06	2025-03-14
Pretty URL newsinsightloop.com/?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42 IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-02-06 12:18 Last Seen2025-03-14 08:08 Times Seen9 Hash 486eae6407d5001a62ed4c52ca1d4833 c1be84266178a2489fd8e0e7e568f24b4e1653f7 885874767cab9a178329f6e4a11c59805d51dd7584c6b8dd46bb2aa562ff1bb4 Loading...

	newsinsightloop.com/?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42	Eval	16 B	2025-03-14	2025-03-14
Pretty URL newsinsightloop.com/?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42 IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-03-14 08:08 Last Seen2025-03-14 08:08 Times Seen1 Hash b56b6a2a4e8fe7c88e2883de14018545 c2fc1b06c51ff66d88e060d2091d14661f27c300 1bc091cf34f752f32d5e063da56a99c432027c8ecedeb274655cb7c834217800 Loading...

	newsinsightloop.com/	ScriptElement	224 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/ IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash c392e2a5cfee54be22dbdb268799ae7a d037a75cc8e2c224ff05aea19645349db1f67e00 001f04761d8a449f3b257ff8051d99954a1253f239bf9c52b2e020d3b6f76285 Loading...

	newsinsightloop.com/_nuxt/Cps_pIM_.js	ImportedModule	568 B	2025-03-07	2025-03-14
Pretty URL newsinsightloop.com/_nuxt/Cps_pIM_.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-07 09:29 Last Seen2025-03-14 08:08 Times Seen4 Hash 338ed1abed5ebac67a094d78a576b544 aec94c1345513bbbfb11706675577b147f92351e 96e1972f8c0ea6a98bac7fa57ff844bb34ac502ff2edde6242028e58ffa7c4c7 Loading...

HTTP Transactions (57)

URL IP Response Size

newsinsightloop.com/_showcase/images/templates/rednews/favicon.png

104.21.80.1

200 OK

408 B

URL GET
newsinsightloop.com/_showcase/images/templates/rednews/favicon.png
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
PNG image data, 59 x 59, 4-bit colormap, non-interlaced
Size
408 B (408 bytes)
Hash
b4fddd4262d09275da6a0819c9595e4c
44adabf5be128e498fde7b3123dff0f44afad4e8
4d9907c300d9cbc19390bc76bb489d42a95bab6c8bf34097b3fc60fb4de1674b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_showcase/images/templates/rednews/favicon.png HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: image/png
content-length: 408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YcO4ktW1bdZxE8Y5dELZuDXkmna7m3DcXqu5QdvhHanitWCRnEYmm2pRPhBe7tOIJX7tUozqMhhztU%2FPG6QvFASUXpA05Qa2Q1eihSy5LsGD6W8YcEyDid0%2BeNqlUcqLnTdUQaKy"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
etag: "198-RK2r9b4SjkmP3nsxI9/w9Er61Og"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 920247ef3d3cfea4-AMS
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/BpoD2wcn.js

104.21.80.1

200 OK

5.1 kB

URL GET
newsinsightloop.com/_nuxt/BpoD2wcn.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (5311), with no line terminators
Size
5.1 kB (5116 bytes)
Hash
697337758462e5ffc6b27b514d532dff
3d2aa0b06a5bfca5fd09cd0a478645b73c13adb1
1cfcd8b55e9a13bcf8fafcda7079fc3d881bab00c2134b9997ce7144e8df0091

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BpoD2wcn.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DhvqLkXM.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vy8TGvfWLqhtVF4kVrHK1sOGQktKq%2FJE4yiQmxQw1eofV9yVvH4KrtnqYHiGaVf7fEP4pmWpKR%2BqvXI06Hhnanrrq5X%2Fbv9rXaLjsEsWPC9uHQEj19y%2BM2MC8GCnAWY4%2FKTpUkgE"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"13fc-5cbpdqEFjZEIsXA0veYUHT6Lo6U"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
content-encoding: br
cf-ray: 920247f41d89fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Roboto:wght@400;500;700;900&display=swap

142.250.74.10

200 OK

22 kB

URL GET
fonts.googleapis.com/css2?family=Roboto:wght@400;500;700;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://newsinsightloop.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
ASCII text, with very long lines (1572)
Size
22 kB (22340 bytes)
Hash
c3da08444ecb7029ff84642e83e30e47
a3d421d6b7d79a85711b5b86862fbe1dfdd11bc2
7a00dda5d4daee353cb52797e58d4d7511d49aa0571cd43911f14c5b51d253a8

HTTP Headers

GET /css2?family=Roboto:wght@400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsinsightloop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 14 Mar 2025 08:08:03 GMT
date: Fri, 14 Mar 2025 08:08:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/5531a5/6512bd/65563ea244d6e/0cd65563ea244d85.webp

104.21.80.1

200 OK

6.1 kB

URL GET
newsinsightloop.com/.cdn/lna/5531a5/6512bd/65563ea244d6e/0cd65563ea244d85.webp
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 374x281, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.1 kB (6064 bytes)
Hash
d8e163aff7b938bc19d67ce4f8a7e948
b433e43df282df096ef1706895296f4d52542001
56f696d0a1aa8f113ecf3b8727f0282b2c035651f56fff90c3d33e848ea9a5c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/5531a5/6512bd/65563ea244d6e/0cd65563ea244d85.webp HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/webp
content-length: 6064
last-modified: Thu, 16 Nov 2023 16:09:06 GMT
etag: "65563ea2-17b0"
access-control-allow-origin: *
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=69eljbP2L3BAv%2F1YzEJujaprp%2F5%2Bv%2Bkfa%2FEt0izt%2BoFL0OZoq%2Bq8RY6O%2FFUptp2N8mj5mxb0ZjzNVRYp635W9Ruyr442iEzfNsLTU0Fx1%2FMS8C%2BaRtWT89B0VwxvE41fgVeX4%2F1d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e94a8cfeb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19864&min_rtt=19398&rtt_var=406&sent=143&recv=66&lost=0&retrans=0&sent_bytes=167857&recv_bytes=4665&delivery_rate=3709206&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=718&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b6d424fff5/35c636b6d4250005.jpeg

104.21.80.1

200 OK

48 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b6d424fff5/35c636b6d4250005.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 374x281, components 3
Size
48 kB (48397 bytes)
Hash
0306319c8822c78a3d976d130f88457a
a10a01bdead3db7b606ca74d5a878997570d9784
bfb33add1e0ae2490861830f47bb46f1674ba2d60e5266769393fec27e13d467

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b6d424fff5/35c636b6d4250005.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 48397
last-modified: Wed, 09 Nov 2022 09:05:06 GMT
etag: "636b6d42-bd0d"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gpUbgvjysnyxs2WqtgBs24I169YleXIOHbOnxseEDAHdBNLWAFxmdLRDEzs6ZvgaFM0R8VZv323HyQSQ48BG2kllUIYFrrP4eBWzl4PHGmjVWLy4JEvTqbOlMRfcdOIBoU4SCuW9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e97b17feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19615&min_rtt=19398&rtt_var=56&sent=537&recv=210&lost=0&retrans=0&sent_bytes=698730&recv_bytes=4665&delivery_rate=10589461&cwnd=480&unsent_bytes=0&cid=05dd446050790eea&ts=777&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/DjgiEest.js

104.21.80.1

200 OK

416 B

URL GET
newsinsightloop.com/_nuxt/DjgiEest.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (431), with no line terminators
Size
416 B (416 bytes)
Hash
701c526264365aaf83dc20b14c965f30
3815e79e855bbf8edb9c830da6dda94a373d75f4
8449bdb4c2fa95dd9c37512e91cb036d8bb4ec0f6bd2985f04dd484c0f658830

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DjgiEest.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Me7oZqsgIPpZinTKcBAaQ6EQl3Kdq4ATysqmaTPJK7RWUh6fxVFaE8Tz8xye1vnVKEKSl9Mjh8%2B%2FY%2FeOcqh%2Fuqinu9Boaf4%2FxNp%2B1S2OnM6o8738zkP%2FgF%2Fniuj4mdrKY7Cgphbu"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"1a0-mc6qWt6JdkmDs3EWlb7I05Tr89w"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
content-encoding: br
cf-ray: 920247f27d74fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b80efc50c7/d0b636b80efc50da.jpeg

104.21.80.1

200 OK

41 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b80efc50c7/d0b636b80efc50da.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
41 kB (41383 bytes)
Hash
fdc453185fc49a46076a58975d775d34
de1cb1926958c2fb71f90e9ade279813832ee818
943a4746f0a7cc92dd62e4e5e0b6c137bf55744af18f438d3f706249021bc97a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b80efc50c7/d0b636b80efc50da.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 41383
last-modified: Wed, 09 Nov 2022 10:29:03 GMT
etag: "636b80ef-a1a7"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xrONXUE6%2BjiWhlRozzqr4nAMpE6BMF6HX6uHyEFoNdkqoQALCKBLIJhs%2BddCUWXYI%2F5RUnwJlusvJQAHbSzVchPX04TANK7bPCvnmDFMbRdvy%2BApPXpGbqWnwIy5NivbAKKB7qXZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e96aedfeb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19961&min_rtt=19398&rtt_var=402&sent=460&recv=150&lost=0&retrans=0&sent_bytes=591819&recv_bytes=4665&delivery_rate=9184245&cwnd=358&unsent_bytes=0&cid=05dd446050790eea&ts=760&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b7794d355e/d0b636b7794d356f.jpeg

104.21.80.1

200 OK

48 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b7794d355e/d0b636b7794d356f.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
48 kB (47465 bytes)
Hash
474892f32ae78ca73762f4b778e1d627
81869fbef818b224e0dcdfba71ddb4b96ccd4af9
9a2c48214c29315a742ff47b91b1a29870c97c10e1824993d7cb5a82ef2b2c4f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b7794d355e/d0b636b7794d356f.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 47465
last-modified: Wed, 09 Nov 2022 09:49:08 GMT
etag: "636b7794-b969"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1I8dR66PTu8xvAET9act4Ycg2O1%2FkbwzqreqivNCPD6AJuknO3eiBfJUpTsWza%2F4lpotEFlhDyiFox%2FBNWdXa%2FxnTNb8o1BGwx3zn0768bx6RUudGKSq%2Fs0Oz6xTjYdWZzvdbm1S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e96af9feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20103&min_rtt=19398&rtt_var=258&sent=596&recv=223&lost=0&retrans=0&sent_bytes=779132&recv_bytes=4665&delivery_rate=10589461&cwnd=510&unsent_bytes=0&cid=05dd446050790eea&ts=781&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/DmOA6rHe.js

104.21.80.1

200 OK

765 B

URL GET
newsinsightloop.com/_nuxt/DmOA6rHe.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (812), with no line terminators
Size
765 B (765 bytes)
Hash
eac4331eb5a96dcd210439e3ee746f17
4eb5c1438bfe180e55324edb3a1c9ae5effba687
fe1e320c05799b758c8ddb80f6d3713a1336a912050fd36cfa893b85c2ee4d7e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DmOA6rHe.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/CEu4zQxt.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VuFC67%2Bm6fcAvjj4m0Jlo%2FjUTrwnPFb6QASX4Ys6FRTmHyn7gsfmLUyxF4h6Qms%2BrGDzcWs1CE%2Bmjq38I33bDgX10BEtOEjexZCIqMAHqseHiqJclAX3mQ%2F8cEWDkwGz%2Ba5kE0nN"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"2fd-aAZYS+gPJqK1/obrRsP9/B7ALNE"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247f12d59fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b85dc364a3/d0b636b85dc364b4.jpeg

104.21.80.1

200 OK

96 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b85dc364a3/d0b636b85dc364b4.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
96 kB (95730 bytes)
Hash
9cf3a47a546fbd6e05a7f7261a869bd9
118659c1183d55e0d5d99055ad6c11e775ffa368
518c9ee67c5d7240953aab4767528df8d52e86b0a414ccf6824774cccf176ea3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b85dc364a3/d0b636b85dc364b4.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 95730
last-modified: Wed, 09 Nov 2022 10:50:04 GMT
etag: "636b85dc-175f2"
access-control-allow-origin: *
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BHwoHVQrb6NbB9xrvi5rB48JLv1LEeGhWkc20q%2FgzTtlbCDphasAC3dWSr9TUC6SgaPZ6yH5GTB8TpWfkXAQJaRhS7Q6zwDYYfySRjicjLHlxjRlDchISJVZnqnv4T%2BXP2WHAL6K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e95ab7feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19770&min_rtt=19398&rtt_var=186&sent=149&recv=71&lost=0&retrans=0&sent_bytes=174515&recv_bytes=4665&delivery_rate=3709206&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=723&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/B7OiHZyP.js

104.21.80.1

200 OK

8.0 kB

URL GET
newsinsightloop.com/_nuxt/B7OiHZyP.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (8153), with no line terminators
Size
8.0 kB (8018 bytes)
Hash
af117b1e34c2dac0badf52b98b26ddd9
8e8d31d397394bf0557bab486a0e231f800092a9
19e463d28117798d74d91cc0ace560b3ac890c811898c7b90f13bf5419425389

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/B7OiHZyP.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xdoGCMGDi8olfZLV1Dlp%2FB%2Ft%2F4FiKjQU4VanNSZ%2F3DfOCO0LSDiAYqZ%2Bq9JBTNhVi4oba97ej3Jl%2BNK8Qy7iSKMXvDczOukCUII3C0PVgV%2FO%2Fbw8Xk66yTMofDbT2mOpqWnEtkVc"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"1f52-zWRFh+NEsDC/LNHc02g/ILOMRts"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247f25d6dfea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/Ve6uEh7f.js

104.21.80.1

200 OK

386 B

URL GET
newsinsightloop.com/_nuxt/Ve6uEh7f.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (399), with no line terminators
Size
386 B (386 bytes)
Hash
972e1f29aaf8f3e32b1cc367f8790cab
20f575342cc59a03c4937b02fc5174a62e11fd37
f8b9cb65259d5cabee174114ee0a426540eef1e5bb5ef39285d32e55447d5aab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Ve6uEh7f.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://newsinsightloop.com/
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hSvmpat2WlIRIK06mRIa7%2FKtqsAJvtFwM%2FFWoTLrqsUkGuqXfZpfY%2BVcX0M4OUzvYe1rIvTzwYN%2FMGukPY4GdKq9AQnHaflfAOL9lrXisGGyxiA%2FIoqeR10zips93a4lAODx5t1x"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"182-Ve3RcYF7WdD8AzTBROheX1f+BOo"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
content-encoding: br
cf-ray: 920247f03d47fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/.events/v2/page_view?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42

104.21.80.1

200 OK

467 B

URL POST
newsinsightloop.com/.events/v2/page_view?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (484), with no line terminators
Size
467 B (467 bytes)
Hash
fb6f19de79ed01d8c3cd3c61bf5f9eaa
749171ef48566a4ffc7184f6d2b2560a6a86bd2a
b32aea4735efed0b4ba20217d82411a61ed6183011aedd17d9a650896c478e09

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /.events/v2/page_view?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42 HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/?stream_uuid=00000000-0000-0000-0000-000000000000&googleIdTh=982bd1a8-0353-4a98-96ad-864c3ba6346d&id=42
Content-Type: text/plain;charset=UTF-8
Content-Length: 510
Origin: https://newsinsightloop.com
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: application/json
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V7%2B6L79jztECq1EXII0M0GaBuUNS4cj%2FJJvocqBj8UlUObLbDl4OsGjTkmOhPyMv4G59caKo5uMyiYJnoE1GfDyHOJsueavSabX8WgN0MyZZwZnBOCKYPbAfpdzYlCD4EmEaYQZO"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 920247f41d88fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/

104.21.80.1

200 OK

123 kB

URL User Request GET
newsinsightloop.com/
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type

Size
123 kB (122921 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
access-control-allow-methods: OPTIONS,GET,HEAD
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-expose-headers: *
set-cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; Path=/; Expires=Sat, 14 Mar 2026 08:08:02 GMT
trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; Path=/
visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; Path=/
-812165315=1; Path=/; Expires=Sat, 14 Mar 2026 08:08:02 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QHkkASl82i2DbCTAaQs%2Bp8K5UtEy4LioAFuQQhWWNLRvEM%2Bp0odAO4LCOouxdOpMHd4HkwBwFo%2BO%2FL1TyRlsE8vd8bDGEOYPifcJxo4JtyDeuAeVMzw2JpaB7dq6RKSKssJYdaiI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e55b1bfeb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=25889&min_rtt=19454&rtt_var=14891&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3518&recv_bytes=1310&delivery_rate=221124&cwnd=256&unsent_bytes=0&cid=05dd446050790eea&ts=175&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/BhMTL-VT.js

104.21.80.1

200 OK

279 kB

URL GET
newsinsightloop.com/_nuxt/BhMTL-VT.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (35818)
Size
279 kB (278752 bytes)
Hash
a97101f6c55682f8eb2c9558ccc3f40a
7f6202f5b43a53f577cd987a3febf73ef1071ec6
286eadf5bc211091b84a6e06464e849c60d2cc7489ab78c6d1bd4b385edc73cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BhMTL-VT.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: text/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"440e0-f2IC9bQ6U/V3zZh6P+v3PvEHHsY"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133368
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rldvT0ISBlzQLt2wqSqvuRoRCvZsoh1jwP6hBpYjy90RitUbWVb9Odz%2BlSqwRxIBIP1llLwqQqfkuxyDLJ3LULj%2B99ba2%2BFMjXqL%2Bvx83L7Y5kFMZLNefgEfyxga5UP4Ddrf5UZF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e93a55feb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20920&min_rtt=19454&rtt_var=1671&sent=62&recv=37&lost=0&retrans=0&sent_bytes=61648&recv_bytes=3094&delivery_rate=1111334&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=684&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636a794445484/d0b636a794445497.jpeg

104.21.80.1

200 OK

112 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636a794445484/d0b636a794445497.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
112 kB (111894 bytes)
Hash
30330bc3c2d0130854437011eb94302d
b089730191e5efa8db30b0b2bf5ddf47783f5853
85acbaf8f03c122e1a6421968dd56ca53ef5868523679ceb6ed66d2c50735cda

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636a794445484/d0b636a794445497.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 111894
last-modified: Tue, 08 Nov 2022 15:44:04 GMT
etag: "636a7944-1b516"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4qstwlTZJ7uz3ss7zEEO7wfHFsxm0UmQ0NwwByNn0CNgFMp1at5eMHwNyNPkzmFVW%2FqF%2BytCMtLQqQ204uqqiGo3t4qIRWCH%2B%2FuFmJU7BaxiNESj44r5MXPj%2FlY2iOAjl6h1GvSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e97b1afeb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19615&min_rtt=19398&rtt_var=56&sent=574&recv=210&lost=0&retrans=0&sent_bytes=747821&recv_bytes=4665&delivery_rate=10589461&cwnd=480&unsent_bytes=0&cid=05dd446050790eea&ts=778&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/Bg0dBfJm.js

104.21.80.1

200 OK

404 B

URL GET
newsinsightloop.com/_nuxt/Bg0dBfJm.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (419), with no line terminators
Size
404 B (404 bytes)
Hash
0a3cd5d2696865c8c5ca55119b4c2e23
f981fcf2584514b6ff0ba00a8705d68405d4e615
e35cea8befce19c61a5437a03ae173e14027b9cbb94de53b117218f4ac7b48b3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Bg0dBfJm.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/Dpf3cYHA.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vYzpVe3u4KGuLvIQLZypW1FA9OQsaMHYYVS8ffUkRw4AVnf0Q8cA5quOo5spgzVyHCun1o%2FQS5a2jHfubMe9ChTkAkKoKCjAaPUmjpYhcnNeXQCnVMFHpyWgUZPRnPJwI2wK9WZt"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"194-E8AmdIx84j7HgOBtkNyE8+KuC1w"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247ef4d3ffea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/CEu4zQxt.js

104.21.80.1

200 OK

20 kB

URL GET
newsinsightloop.com/_nuxt/CEu4zQxt.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (17679)
Size
20 kB (19913 bytes)
Hash
ef3a450069ec1aff3fb3a56ca3a465ec
a50c1275394039e17293c49b0a903ee6b2c4a7d8
86cac77827dbf7501c1cd7ba380c99be981d84d171ad6fb1d76b22ad3583be30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CEu4zQxt.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/Dpf3cYHA.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uwA5OXBPrMoTjiUYOg7VlRHod4XMuL84PGDrKISZGAotEDpnKBqysTlQgUIrEi6OoE6JXxgBLRf3XIxs%2FctPgu7sOUZv3wBnH0jP86SsiytbVM2ovkHrldVdlITjrGcO92dQ%2Fcac"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"4dc9-pQwSdTlAOeFyk8SbCpA+5rLEp9g"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
content-encoding: br
cf-ray: 920247ef3d3dfea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/Ve6uEh7f.js

104.21.80.1

200 OK

386 B

URL GET
newsinsightloop.com/_nuxt/Ve6uEh7f.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (399), with no line terminators
Size
386 B (386 bytes)
Hash
972e1f29aaf8f3e32b1cc367f8790cab
20f575342cc59a03c4937b02fc5174a62e11fd37
f8b9cb65259d5cabee174114ee0a426540eef1e5bb5ef39285d32e55447d5aab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Ve6uEh7f.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/BhMTL-VT.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ll1ChxarS49hKhDFnJIvfehRX8CfP7uETQlev8Z1nJ1JX1Io9SE1uKqaCK9FbgvkoYJc3hEJRrH%2FleUbT9JGlCq%2FKOTuCx8yjdVfB7tM5RYGGV%2BylF1x9BkdrcvpzqwMD9me76K%2F"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"182-Ve3RcYF7WdD8AzTBROheX1f+BOo"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
age: 0
cf-cache-status: HIT
content-encoding: br
cf-ray: 920247f0cd50fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/DhvqLkXM.js

104.21.80.1

200 OK

5.9 kB

URL GET
newsinsightloop.com/_nuxt/DhvqLkXM.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (5965), with no line terminators
Size
5.9 kB (5874 bytes)
Hash
5a6620e69dfb37c9c975c14d567c69bd
55c4911f5f6216230a43599a413931894b0ebfa3
b2c5ca681df43f0f22e72482ff57c0e0caa4314e96729d10db51c8bd2911307a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DhvqLkXM.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7g5hQ%2FZ4o%2F14HCEJXU8azKqmzYEYDVqkwoeDip9ksU6LwsfQdAGO%2BJlHcZMFD7XOw3u2AJ3EXLggw2bH30%2BMkS7eMhrW5O7jGUsmh6qdZEqLfvBNicF6VMXyt9HYryFAFPnrTfhO"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"16f2-XWhYKWkUKp9NCoJIx2lDEPFmLbc"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 48471
content-encoding: br
cf-ray: 920247f23d67fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/DkAQHIF8.js

104.21.80.1

200 OK

6.9 kB

URL GET
newsinsightloop.com/_nuxt/DkAQHIF8.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (7310), with no line terminators
Size
6.9 kB (6931 bytes)
Hash
f3602dd5b75576d46082fb3608d472e4
f85208ee0b5a92618fef19aa70ec1205365c070f
342833b0226dbcf43ba93c5601a9fc5593ae1bf7297905c5f48c0cfc3c753246

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DkAQHIF8.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RqZzl3sNVCTtESE1Mdv2Zbst9JAOrhKYt5qCmOAtv8Kai4FpDA1Ytd3r%2BnnBPDa%2FrxY4%2FRwWk6mxL6lRM9mmjcUjk%2Fk%2BYpcFxJjcYHdEuw0dfTzTvyZUXjD22XOEMGLXSawiDIqC"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"1b13-GhAE6R8UAsgTru1g9Bp30NgH4hI"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133370
content-encoding: br
cf-ray: 920247f25d6cfea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_showcase/images/svg/icons/search.svg

104.21.80.1

200 OK

870 B

URL GET
newsinsightloop.com/_showcase/images/svg/icons/search.svg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
SVG Scalable Vector Graphics image
Size
870 B (870 bytes)
Hash
3a5e387714e83a3588f9fa29f4b1abfc
e0fa42b5e120fb06aa423179a897fae93d60f9a9
c23526ff5bdc2be032d7b6dca69cabb311dafdf61f9c618da02b7a06dd039261

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_showcase/images/svg/icons/search.svg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"366-M9S+R1OGKSD7jBb7hwTnp9TlZ9c"
last-modified: Thu, 23 Jan 2025 13:16:57 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3168
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XvNQpIxwpzkuvq8sOrt5IAezWIv0RDShEkEtemFQBXrkFioGxwUHa8cZjZ07cwImRbzRUIeq7yzUuQVHSFUFl61qc4phgspItt%2B%2FW5vXJzMci7mTxUQyLaaI8L2n3J3OGOmLO7ED"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e93a5ffeb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20920&min_rtt=19454&rtt_var=1671&sent=60&recv=37&lost=0&retrans=0&sent_bytes=60710&recv_bytes=3094&delivery_rate=1111334&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=683&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/07811d/eccbc8/65f4672d327fb/0cd65f4672d327ed.webp

104.21.80.1

200 OK

32 kB

URL GET
newsinsightloop.com/.cdn/lna/07811d/eccbc8/65f4672d327fb/0cd65f4672d327ed.webp
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 374x281, Scaling: [none]x[none], YUV color, decoders should clamp
Size
32 kB (32264 bytes)
Hash
d17d60a2e79ccae6e72bc68232617491
359fe3b61c3545948c56548c4bd775c1214388b6
4c30c33481e95187ec9f5413576058092ed9aa64549e6e2367c7c41e66f9d93f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/07811d/eccbc8/65f4672d327fb/0cd65f4672d327ed.webp HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/webp
content-length: 32264
last-modified: Fri, 15 Mar 2024 15:20:16 GMT
etag: "65f46730-7e08"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q%2FPK%2FkHRvWFVfSNtg2Y%2FHonAoGEGBfT4zBFdC27JGhx19J92Y7kALu7gvZPhMtKwonpDakCNRc7NGY0C1QeJPM%2BYQaWC18SaU46jsnogiu6rHcymWp49M%2B4B7CcliDwV5em9P40C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e94a8bfeb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20164&min_rtt=19398&rtt_var=859&sent=250&recv=87&lost=0&retrans=0&sent_bytes=314959&recv_bytes=4665&delivery_rate=2451888&cwnd=258&unsent_bytes=24818&cid=05dd446050790eea&ts=739&x=0"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.99

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://newsinsightloop.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsinsightloop.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 18:15:43 GMT
expires: Fri, 13 Mar 2026 18:15:43 GMT
cache-control: public, max-age=31536000
age: 49940
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/DkWsm13h.js

104.21.80.1

200 OK

459 B

URL GET
newsinsightloop.com/_nuxt/DkWsm13h.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (472), with no line terminators
Size
459 B (459 bytes)
Hash
ad5aa7c057f7de725ff684e99c6735f6
7fc673f05540c31de28b9bcb6d9e3630afe96a06
03956bfb8fda7f3fb04cebff019b91e48f1bbfc73a865fe8224fe286171d48b7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DkWsm13h.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VZJEQYX67KcBYrBSZ4mbC0B2N1c7raJ7a9UDvLhUaBkN4xBN08QKJMR78HvNQJjTA0iecP%2FqxhYbodaD7uCCxE9CvEozgMZBDtegHkdnYNbRurz9f85QQf4lL5px%2BFelDymRCLEF"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"1cb-kQYip9yqLphdRRp9EelX7qewywE"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247f26d70fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b83485271c/d0b636b83485272f.jpeg

104.21.80.1

200 OK

54 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b83485271c/d0b636b83485272f.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
54 kB (54269 bytes)
Hash
cb023a9718909b62aab3877d49ff438a
d8cda96d27249b680ab9d33c6b0ee01647f0db54
e1e6878ad26b276a567d87b3ca38d103c09a0a624f494dafba0cc061fca17fdb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b83485271c/d0b636b83485272f.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 54269
last-modified: Wed, 09 Nov 2022 10:39:04 GMT
etag: "636b8348-d3fd"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8bpiwsaJksoIiZqku9vcDgTVVljrnYt%2BAE4X4b0QZJhfjYxAgl2pmYbaKS5IES0VugtHShwrxSYux%2FK8c0v6nJw81Y%2F21%2FJ8NeFQzGUsihZ5xo3meWQM5KuLbRikPQFPNBwV2F2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e95ac0feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20503&min_rtt=19398&rtt_var=1496&sent=755&recv=235&lost=0&retrans=0&sent_bytes=995235&recv_bytes=4665&delivery_rate=14678121&cwnd=685&unsent_bytes=0&cid=05dd446050790eea&ts=810&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/app.DhPO3Tpp.css

104.21.80.1

200 OK

9.2 kB

URL GET
newsinsightloop.com/_nuxt/app.DhPO3Tpp.css
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
ASCII text, with very long lines (9192), with no line terminators
Size
9.2 kB (9185 bytes)
Hash
d1a38d8cc494c2318a41fd3cfe09f005
009d40cdc75a49ef46536ba915d55422465b8973
f65b4443a0036f24fca17e528bf9e32a6af13fd1f25a3d790451031325a30e0f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/app.DhPO3Tpp.css HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsinsightloop.com/
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"23e1-S9CRAj2GzUpitXAx/mCKGRu4IA8"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gyje9yJLRaPgyMpv6vPAEYd9%2BbXsRlIFmpm0fZ%2BNc5VXeTU%2Fs2t%2FcrpMzVZbwEMgW4dDkM2b1eQckb%2FqYD77y%2BKQ2XT6ijZzMIH0Mofs%2BpzOJxjolwN8RPg3iVYPsqi0bZQRNXRJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e92a48feb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20920&min_rtt=19454&rtt_var=1671&sent=96&recv=42&lost=0&retrans=0&sent_bytes=106496&recv_bytes=3749&delivery_rate=1111334&cwnd=258&unsent_bytes=31856&cid=05dd446050790eea&ts=692&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/B-KmEECH.js

104.21.80.1

200 OK

993 B

URL GET
newsinsightloop.com/_nuxt/B-KmEECH.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (1024), with no line terminators
Size
993 B (993 bytes)
Hash
88b8194f96f9e3a1fc20e1c9acf98f68
06c52a2b48ad9779d45703dca175e113cd73f0cf
b8edafd7bbe54d3b0774e53d015ebbf4e0c88922d24e8ff36f80c16177f2c1b7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/B-KmEECH.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2zNXBZ9BF4k7RltG2lzxcJMhgmvkVp6HPETDe4YZKemu1UjJLrtzdCmSp2GAjickqfdSuEVKyQVZk3j26oi6GHoj68CGST2mMUQ5AZDi%2FlBmiQ9JRUlpCDZ4CmIglTl1rw9oAwLM"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"3e1-+hYNrc/xgbNPFTTsp7nG537BXcE"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247f22d65fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/cKozo6im.js

104.21.80.1

200 OK

413 B

URL GET
newsinsightloop.com/_nuxt/cKozo6im.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (428), with no line terminators
Size
413 B (413 bytes)
Hash
6cd96c8cb341894774a357c757cbadce
3e9bef5064302984891c3d30a410488093e9f6b1
743285ccfb0bcde270f4f96f1c3e73d8544a786b795461c6489617e876af2806

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/cKozo6im.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ryJIqtkUiiIkc3V3my27F5kA24sbVuWWmsqmu%2BjiSCt5rLSpijNBJ0Thtkf2xDzR9sxmgJ4Tm5WM1isMoe5F2w1xpWfJZyzOvQV3x4ohQnZQe%2Fk7t2GU%2F7MqxG3uOHPBcjD67%2F6G"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"19d-BNVUpgIYs8zc0XgbJv0O1y/94kM"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247f27d73fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/ikRf9oRT.js

104.21.80.1

200 OK

581 B

URL GET
newsinsightloop.com/_nuxt/ikRf9oRT.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (608), with no line terminators
Size
581 B (581 bytes)
Hash
601a25a0e28d8e9b83ae6408b456156f
ca49704cac0188d85308493a6eca75209cbd55a6
3c5add4b7fb52b0c18ce7012e15d44f32c1cba91dbd652840bb7fdea68eb9a74

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/ikRf9oRT.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://newsinsightloop.com/
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RfNqsmiUYOn9BLuLPEB15FW3libumznQ2z3e%2B5ARG2U570hIcp2IkYtX%2B2e56Lc45o%2BOe%2BBEm%2BAWKQgCZOnIG4atRr8zFkUF%2BcBdm4NAukhGb6EZ6CzUrqwYaNTUXxMLFcfcR%2Fnp"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"245-Edyp/rjTWtjAQ4K/s0D9fjF6Seo"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133344
content-encoding: br
cf-ray: 920247f04d48fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_showcase/images/svg/icons/calendar.svg

104.21.80.1

200 OK

3.0 kB

URL GET
newsinsightloop.com/_showcase/images/svg/icons/calendar.svg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
SVG Scalable Vector Graphics image
Size
3.0 kB (3039 bytes)
Hash
6612c5644ad96add55a77120b2c98e3b
061d7a3df4e1c48a3dad50391c8decea4209d334
3b9f1c2530581caaaf22b17fe6c29b04092d7bbd7eff1d8c2e97fe90039bc10f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_showcase/images/svg/icons/calendar.svg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"bdf-Dr5CJovDuUS0Dw6XTkrx0wX8aPo"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trXM1GpiGQ9yLbl%2B88Wyt1AnkH3R2p3A80TdX%2BVVlwIIxA3RaFSAHr8poWbJ2%2B9yXggBVVuhhz4zpXm1xXmRI%2BSv0AbmDmKJlHMjn5%2FXu5JobGdJko2jrATW3%2FhnZipOBhoC7o9D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e94a69feb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20920&min_rtt=19454&rtt_var=1671&sent=57&recv=37&lost=0&retrans=0&sent_bytes=59458&recv_bytes=3094&delivery_rate=1111334&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=682&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/637249312b254/35c637249312b266.jpeg

104.21.80.1

200 OK

41 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/637249312b254/35c637249312b266.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 374x281, components 3
Size
41 kB (41364 bytes)
Hash
0aaf8a2b8612db8da51f4712fe3da102
c78512cfb9b823f700507d20e53389522723e37d
4bbce417dd897ae737f278b206b09119984dc4e04b288664fde5c0971e6ebc41

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/637249312b254/35c637249312b266.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 41364
last-modified: Mon, 14 Nov 2022 13:57:05 GMT
etag: "63724931-a194"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2IWBp9DyG2YA5bWxaMWAtU0%2BrECT%2FmR%2FinpQfG4qqF54oVAT9am7xblNiNuaCV%2FwB6AoTkHdMOUXZuMB98Kn3MqOaa%2Bu8S1aoPPnHHC1x1cg8NrmUpPuHEEOM4HdY6JRf2%2FZvM1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e95ab3feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19969&min_rtt=19398&rtt_var=96&sent=361&recv=140&lost=0&retrans=0&sent_bytes=463253&recv_bytes=4665&delivery_rate=8388333&cwnd=338&unsent_bytes=0&cid=05dd446050790eea&ts=752&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/Dpf3cYHA.js

104.21.80.1

200 OK

664 B

URL GET
newsinsightloop.com/_nuxt/Dpf3cYHA.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (687), with no line terminators
Size
664 B (664 bytes)
Hash
82df15ec568f6d640f014d898a921f28
678beee0cabb6ee774100838f2417e1c3d5e7589
59a330b4ba9db06b0ca812844cd675ca3e7ab91924c344a1f2d96ce874ddab4d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Dpf3cYHA.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/BhMTL-VT.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RvwT45EDiceEZ7tgUYpIFwt7vbHbgGjj5psSsWafduC7Z7xnpTI5U0c2ZkMEIWlyCsZH%2By%2FLTCMmPkOpGBacc7c5QCGG6z9PlEkiVAshzA3Dw0NkQ%2B0u9sBYy5VTtTM8FaaggDwz"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"298-bqhS/k8v+jexw1pDacIGYtcneGc"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247ed9d2ffea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/DKkicVU4.js

104.21.80.1

200 OK

7.6 kB

URL GET
newsinsightloop.com/_nuxt/DKkicVU4.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (8025), with no line terminators
Size
7.6 kB (7640 bytes)
Hash
08dbf3ea1cdc64304f012df9de37bb6b
6c25a9c22dd39e8f003ca341cd16c110fa612b5f
800616c5e2d4207739cced8746b487c12679abda3ee2ee1675b9d031879e2cba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DKkicVU4.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZOqpvfC0V4tkwWs0B1MTBaq7dvGBHDEA%2FFm7mJ6BeKbtk%2BpExybKij2MKHznydTOKi58YNBKATSaXWmJnNxUj1JGOnIDg%2F5N4GVnVodJgNAbZu4ycDHNEi%2FBGXcLmo79XtFancsk"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"1dd8-FdNBimPoWwqak11ltP92+nS1lsc"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247f22d63fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/BFN_TH8r.js

104.21.80.1

200 OK

1.1 kB

URL GET
newsinsightloop.com/_nuxt/BFN_TH8r.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (1117), with no line terminators
Size
1.1 kB (1104 bytes)
Hash
762a7e0738eebebd56db64cb4abb0b6f
c0904396d77b2816bbd8108b17ddddae726bb790
e30e1b98feb8c263129aefb368f2cf0a06bc3f1d40cdc99e26ef0ddfad859dc2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BFN_TH8r.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IOmgXCdbV2%2BOPp8qXMi5yH2imhWcNX8Pliai7moEgFIppav2DofY2XUzRJ4n99UKOpIU3Bd%2Fhlxeq737HxdOQLbJxNWPTbhSBFZQtBHbI33Y7nySUhJ%2F8nBoaWHmso2RGVpqVN0%2B"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"450-N26SRla6lrr1tj29BmiNODCRdIQ"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
content-encoding: br
cf-ray: 920247f25d6bfea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/_f5lrSdb.js

104.21.80.1

200 OK

620 B

URL GET
newsinsightloop.com/_nuxt/_f5lrSdb.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (655), with no line terminators
Size
620 B (620 bytes)
Hash
ff96a78784e468f8f939b7753c68af54
07a51856a72ad702f5d0a0d02f988c4665b50101
4a37def99e208d6b0cd15259518f47842fb27e10d7f1fa1f88b3d77860bc8840

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/_f5lrSdb.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iddPMOvdwEexPtv3D9kLSpiJ1sDLgTHYUGjo%2FXjExEfQAKalfHBFI1TWErfxsft%2FvP7EIyFLh8cFKVkbl2Lhtzma0%2Ba79%2F1svy6OAw53TlorRtZ7UyHMozpeOh6rcNBHrGLhELf2"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"26c-xNGFOGXthee0uXMp/Y2OBwdz4tY"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133370
content-encoding: br
cf-ray: 920247f26d72fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b6b607b07c/d0b636b6b607b08d.jpeg

104.21.80.1

200 OK

86 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b6b607b07c/d0b636b6b607b08d.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
86 kB (85521 bytes)
Hash
a570d4ef05b160b52b62dca43f2063b7
f3791c6a6462e78c5b3f8650ff9b4f0af5a3d2a2
d36307787c78da545446c2718062fc46c63539d89566ef0bce140a2ba5d4de19

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b6b607b07c/d0b636b6b607b08d.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 85521
last-modified: Wed, 09 Nov 2022 08:57:04 GMT
etag: "636b6b60-14e11"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QsTwessDwsSCrZ5itXFtwmzji7iPwAGf0ryleIpMnO4%2BjxLA4RWcDC8djA5Rz2AbdKQA98aMu%2BuPSEewQeUNUHJnGWdJ9bi0yWGjwHKqaqtSeeKdAE5dF7%2BowEoZ1CWbQZchiHpc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e97b18feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20103&min_rtt=19398&rtt_var=258&sent=631&recv=223&lost=0&retrans=0&sent_bytes=827296&recv_bytes=4665&delivery_rate=10589461&cwnd=510&unsent_bytes=0&cid=05dd446050790eea&ts=782&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_showcase/images/templates/rednews/decorator-pattern-red.svg

104.21.80.1

200 OK

200 B

URL GET
newsinsightloop.com/_showcase/images/templates/rednews/decorator-pattern-red.svg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
SVG Scalable Vector Graphics image
Size
200 B (200 bytes)
Hash
6a3cbff720570e45c53bd80a29fbe352
5e8aa989659bb0f023cd175d14b2f68f647b8b94
abd686f959206c4f66f156d365bad2cb3302c14c71e0aa5c740effa44f18f26f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_showcase/images/templates/rednews/decorator-pattern-red.svg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsinsightloop.com/_nuxt/app.C-9zoJlV.css
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: image/svg+xml
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6of4mYMbxKjs%2BxlSVZv8A6CHH0QlZm21aelcsjc7WVT0p%2FkryKza6x9rhqnIvPRHRizWCV7lkhaYcWAqq6pO2kKkViTrSB3HAWn%2BagKhB%2F1bR1NeV0EIRTqNS8bRikMyJJLMeZgz"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
etag: W/"c8-sm8X/N2nuTkPQ4/jQ3/0ghIXfEE"
last-modified: Thu, 23 Jan 2025 13:16:57 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
content-encoding: br
cf-ray: 920247ed6d27fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/BgTHKnlH.js

104.21.80.1

200 OK

417 B

URL GET
newsinsightloop.com/_nuxt/BgTHKnlH.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (432), with no line terminators
Size
417 B (417 bytes)
Hash
1fc2eb4d9ee0fb19b2f286a7ee5543c8
f0fc1ec3b9e1a770ad3a357490d6cae54b4b4abc
0f11615879391fdeb31fc826592ec5dabd971dc6ed27b50ae487bbb5608f912b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BgTHKnlH.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=67MgSpazvh5jcop8vK7prQCS1QN%2BL3MsRf%2FN3dBqu%2FsG%2BKAYpUozGL6LQyLtZ%2BLRhrdA5Kohn6xz8f07oSc%2Bm%2FvA9t7kJ3BlFHe0OkuuhxkAMt1X3fntiK3Qk3S1lGJZR4ZyA5iC"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"1a1-I9Q4WxXE2hKn8XDMyM3UwHAgQWo"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133370
content-encoding: br
cf-ray: 920247f26d71fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b829994870/d0b636b829994882.jpeg

104.21.80.1

200 OK

64 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b829994870/d0b636b829994882.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
64 kB (64053 bytes)
Hash
dd6c17179d9a5dc32fa4dce0417575c9
6a46633f7fe6d4b4979352ce40a097fcbe1a5f05
32c0f2113456b78dbdd2de5cb4047d0a3e8a99e663482c671cbe6f9b78a39436

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b829994870/d0b636b829994882.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 64053
last-modified: Wed, 09 Nov 2022 10:36:09 GMT
etag: "636b8299-fa35"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i16lQHIIhqhZY8SJcb9t7adGwMpDCq7a6nQnSqUTMt4sVkzYik8FBYsuiQ1%2FtN9AiR2Ulv5YcFTkKIDngFC9%2B3uTgNiN%2FV4tIaOMCCBh2oReHF34wXEDrAzj4Co3NDpyIiivk1vA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e95ac9feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19947&min_rtt=19398&rtt_var=28&sent=490&recv=161&lost=0&retrans=0&sent_bytes=633951&recv_bytes=4665&delivery_rate=10589461&cwnd=380&unsent_bytes=0&cid=05dd446050790eea&ts=763&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b76293ed6f/35c636b76293ed7e.jpeg

104.21.80.1

200 OK

34 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b76293ed6f/35c636b76293ed7e.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 374x281, components 3
Size
34 kB (34181 bytes)
Hash
edc0a1fc9de5536352d35075fe9ed449
56329bcb5c6b1ae7a6ee622b4a6b33d08dbcd89a
ce0b1f2feeaa809e4af0686bfb6b0b20e06c9f3718f762d2b38b8bb9ab64e670

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b76293ed6f/35c636b76293ed7e.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 34181
last-modified: Wed, 09 Nov 2022 09:43:05 GMT
etag: "636b7629-8585"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J5BHBFsuc0N5yNxN46Zpw42ESyjVPCirFoR0qFpaFApqriADSgddzoQ68q1j1pM4u3SLtE7wnCxcJtbS%2BN4CVtxpxkcB50VcGvuzw2LCyuN7Ee%2F8LJ3469kXI51C1BwpoqG%2FNGh3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e97afcfeb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19841&min_rtt=19398&rtt_var=216&sent=434&recv=149&lost=0&retrans=0&sent_bytes=556951&recv_bytes=4665&delivery_rate=8388333&cwnd=356&unsent_bytes=0&cid=05dd446050790eea&ts=760&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b72e16a31a/35c636b72e16a32a.jpeg

104.21.80.1

200 OK

36 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b72e16a31a/35c636b72e16a32a.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 374x281, components 3
Size
36 kB (35849 bytes)
Hash
a61e07058497be1291ed1540251054c1
46d533bd7665695ba14ae35299f7f1d18577a850
0c28d7ed71b2591ceeb4a98400545100fc53995fa56f4b284057604314634c6c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b72e16a31a/35c636b72e16a32a.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 35849
last-modified: Wed, 09 Nov 2022 09:29:05 GMT
etag: "636b72e1-8c09"
access-control-allow-origin: *
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GhKqNSemms4BMWfteRGMKUm%2BV1bHhT%2BWVJzr3rQJhcc%2BRqfHmPnKIX4sURs8HLSGUx5D1TD9j93FTp8yNBJ2jSk6nRxAo61RYyY3PfIfwPcDtT3KQU4dltk%2B5I656Z8vKnL3s78n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e97b15feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19398&rtt_var=63&sent=330&recv=124&lost=0&retrans=0&sent_bytes=425740&recv_bytes=4665&delivery_rate=6980065&cwnd=306&unsent_bytes=0&cid=05dd446050790eea&ts=747&x=0"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.99

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://newsinsightloop.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsinsightloop.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 18:15:43 GMT
expires: Fri, 13 Mar 2026 18:15:43 GMT
cache-control: public, max-age=31536000
age: 49940
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/5531a5/d72d18/64c39bf6a1e77/0cd64c39bf6a1e87.webp

104.21.80.1

200 OK

12 kB

URL GET
newsinsightloop.com/.cdn/lna/5531a5/d72d18/64c39bf6a1e77/0cd64c39bf6a1e87.webp
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 374x281, Scaling: [none]x[none], YUV color, decoders should clamp
Size
12 kB (11664 bytes)
Hash
1c6d201910df8df0eb3fcea8739007bb
52a6c44df68eff2c8c126799e3bece8ff6fa1913
41d821dee96ed747866d48785783bb3c6bbffd4b66415cf873231e38d98fcaa7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/5531a5/d72d18/64c39bf6a1e77/0cd64c39bf6a1e87.webp HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/webp
content-length: 11664
last-modified: Fri, 28 Jul 2023 10:44:06 GMT
etag: "64c39bf6-2d90"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D6InJCr4X02Mib89XCRKMeJjEThTCGFfPD%2FgHR4exx46dQsMp3gfXoxHZPtUPnSFwJKsYtUFLcrPdxDJIUKe0w36nPHgIm%2FEagkH%2FxykNZ%2FenTPNbNtQwEXAbFX6C5n0QMq7L0lL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e93a61feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19740&min_rtt=19398&rtt_var=59&sent=219&recv=81&lost=0&retrans=0&sent_bytes=271574&recv_bytes=4665&delivery_rate=2417362&cwnd=258&unsent_bytes=30542&cid=05dd446050790eea&ts=729&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/07811d/eccbc8/65f199dbe9e54/0cd65f199dbe9e3b.webp

104.21.80.1

200 OK

25 kB

URL GET
newsinsightloop.com/.cdn/lna/07811d/eccbc8/65f199dbe9e54/0cd65f199dbe9e3b.webp
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 374x281, Scaling: [none]x[none], YUV color, decoders should clamp
Size
25 kB (24686 bytes)
Hash
c4f03d67997708a24c6e5418b266db68
2ae0bc0b59199667c8d190bc50572f2b78d691bc
1526ba8494ffe3e261ad5950f07cdb189dab5da5660fd35c40c10d413ce06a5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/07811d/eccbc8/65f199dbe9e54/0cd65f199dbe9e3b.webp HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/webp
content-length: 24686
last-modified: Wed, 13 Mar 2024 12:19:41 GMT
etag: "65f199dd-606e"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j9WM7mLlc2ny5nm%2FSyntyxcwDTkWaY38nrsJfV0G6L0SLOqMm%2BLdzxxJ5Od%2B7V3u5AHl4CBblZV7mM2%2BhbkMDhP4W%2F1N%2BC5XQ6skHroBhTyF%2FhxFC21WiJmaDTBJV%2Bq%2BvHjLmzm5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e94a6ffeb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20164&min_rtt=19398&rtt_var=859&sent=249&recv=87&lost=0&retrans=0&sent_bytes=314386&recv_bytes=4665&delivery_rate=2451888&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=738&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b81a41458a/d0b636b81a41459a.jpeg

104.21.80.1

200 OK

50 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/636b81a41458a/d0b636b81a41459a.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 500x500, components 3
Size
50 kB (50282 bytes)
Hash
e75c3493c1cebcb7e13900b81b85a8a0
fd8f37f7d19cade85448a8f48ca69d5f3375d592
3bd3f444925bb2eca9714d3dbb6347df03910af3c0ec2dfd489eb0a8b9e76c9d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/636b81a41458a/d0b636b81a41459a.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 50282
last-modified: Wed, 09 Nov 2022 10:32:04 GMT
etag: "636b81a4-c46a"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HfWgwKMT6TVVOsptYq3hBIe9JGhzCOre6KTYXfLhaWhRs0hvb35WAZtfUdHkf0v0xmrFTfuzOeWNrAabJ60k%2FVkIy%2BmXhMKTohQtjUjP23zDpfV1meI0F3EzLPEK0psuDnzPrwj3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e95ad0feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19969&min_rtt=19398&rtt_var=96&sent=396&recv=140&lost=0&retrans=0&sent_bytes=505953&recv_bytes=4665&delivery_rate=8388333&cwnd=338&unsent_bytes=0&cid=05dd446050790eea&ts=758&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/DgGzilZG.js

104.21.80.1

200 OK

2.9 kB

URL GET
newsinsightloop.com/_nuxt/DgGzilZG.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (2969), with no line terminators
Size
2.9 kB (2908 bytes)
Hash
3cad16a0dc1e408ffeddcdcffda0383c
8dcb06de924fb4611e58f3ff3ddba6688f4bb6a2
65e151a1741390884622ae0aa12b3437c0d721828983b9513fd0173bb3c00dc8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DgGzilZG.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6bVt3fHmM1msmnDl7B24DpvyKwSDqkIq8SVeThT5p7OXjlU%2BE7FSkpjssQgzcKTgW44jlvsZLeeMbrFiBUAt3xnBPHv3MNhYEKBmWsqQ5l2oKojz5EDBppGKMwgAPV9poBKOMf6E"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"b5c-M9Sl2N4JjQrq5v1IL9SKf7RqeuU"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133370
content-encoding: br
cf-ray: 920247f26d6ffea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.99

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://newsinsightloop.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsinsightloop.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 18:15:43 GMT
expires: Fri, 13 Mar 2026 18:15:43 GMT
cache-control: public, max-age=31536000
age: 49940
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/Cps_pIM_.js

104.21.80.1

200 OK

568 B

URL GET
newsinsightloop.com/_nuxt/Cps_pIM_.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (585), with no line terminators
Size
568 B (568 bytes)
Hash
9a577408d37ec9040413417fa5f4dbc9
4c2a068d4e365227d84a4dd222b6d0b48bce2861
acaed4bfc81c33a07e9e66d4d5346801f7955d61d4ad7c421b658b122a2bee6d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Cps_pIM_.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/Dpf3cYHA.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:03 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BYd%2BxvQVEjFDgUbSrksSEcuD4jijQ8xwD2fd1SJK9qGWXrqxgP22ohY8gL3wHwfglh7PPbPaYZqHj0HEWXtKoohZPz%2F6jh4hly62XdB6RmfeXPGfn4Rn9%2Fnid9htadVBLMKlUs1h"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"238-rslME0VRO7v7EXBmdVd7FH+SNR4"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133369
content-encoding: br
cf-ray: 920247ef3d3efea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/Wuh8dBOn.js

104.21.80.1

200 OK

899 B

URL GET
newsinsightloop.com/_nuxt/Wuh8dBOn.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (934), with no line terminators
Size
899 B (899 bytes)
Hash
ce18605d3ab8f12a94826e2520d1b94e
1f9406e162368106e8320a88f390fa30bb1ab1d0
8732db691f101510b57710b9a96ab7461d6dff904e1b02eadbcba9da5e36e4fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Wuh8dBOn.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f9RDoiywZQLFv3myhAbkU%2FbNExpEPnnn9VnC0TwJ0A%2FEHQ4z786XE%2FZgJR8rP44WOeS6Q5HayR3stY89DFEbcEmNr6qjxfYRsjRwOdgclQIkDYf588Fky2jnjJ1v7yv%2BtLzmPXt9"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"383-1OG0zrPKwcBvM6juQgqx5FaX8es"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133370
content-encoding: br
cf-ray: 920247f25d6efea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/.cdn/lna/07811d/eccbc8/65f185ee99fc5/0cd65f185ee99fad.webp

104.21.80.1

200 OK

30 kB

URL GET
newsinsightloop.com/.cdn/lna/07811d/eccbc8/65f185ee99fc5/0cd65f185ee99fad.webp
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 374x281, Scaling: [none]x[none], YUV color, decoders should clamp
Size
30 kB (30410 bytes)
Hash
d4c7fdb2c0791086e522ae6e07d36e9e
54c5f49c465b10125b0f67d850a1c65ada62e0b2
bff6cb3aee9059bbe83a337fab3cbca5256a112d2cb43ca27028cf5065849975

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/07811d/eccbc8/65f185ee99fc5/0cd65f185ee99fad.webp HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/webp
content-length: 30410
last-modified: Wed, 13 Mar 2024 10:54:40 GMT
etag: "65f185f0-76ca"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fU3QlZWDF1LFWS4b%2FwCcPoK3XnbGXL5JvJVheBm4BNKVs4eNEebDq%2FAl5aU8ZVur5FJCcgvfGx5qw6edQmA3ClYpi4KStnOOmPqvbA7joEmdpyhHI6zpsoN0fEf0oQ%2B%2FWfRFQCVh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e94a72feb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19740&min_rtt=19398&rtt_var=59&sent=218&recv=81&lost=0&retrans=0&sent_bytes=271094&recv_bytes=4665&delivery_rate=2417362&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=729&x=0"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.99

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://newsinsightloop.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsinsightloop.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 18:15:43 GMT
expires: Fri, 13 Mar 2026 18:15:43 GMT
cache-control: public, max-age=31536000
age: 49940
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/6eyK98wZ.js

104.21.80.1

200 OK

1.2 kB

URL GET
newsinsightloop.com/_nuxt/6eyK98wZ.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JavaScript source, ASCII text, with very long lines (1187), with no line terminators
Size
1.2 kB (1160 bytes)
Hash
36aa954a56f65dc0d39b59b15b8d4e52
13035fe395dfc5f20557eb762e67a1970b5f4f87
e72365201a6569a330befb947806fb8e068b4dd2c9f75707660b531f12864344

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/6eyK98wZ.js HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/_nuxt/DmOA6rHe.js
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 08:08:04 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MvkS0zTHL6mwbpXWegBITgY04jSes%2BhzH2Mk5JXQbn%2Bhq5bv1bIe5gY3Ek48aZD3ZeCicsya9PWZCtvQ9ri80nU1BnmieL16WJ8e1%2F0VtGByHHYGUwW9u%2BerY4BuUgBiivoToFvB"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"488-9qrHetrMhrBuz4lqgoQckI3N2hE"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133370
content-encoding: br
cf-ray: 920247f23d66fea4-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

newsinsightloop.com/_nuxt/entry.DVIo1EG1.css

104.21.80.1

200 OK

140 B

URL GET
newsinsightloop.com/_nuxt/entry.DVIo1EG1.css
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
ASCII text, with no line terminators
Size
140 B (140 bytes)
Hash
5e517928ec0f4dad9288a03fe5783382
fce639b6c520119d25d173b866847416b72e23e9
3ad55b42bf2ef1b944bff1be7d4b5bf79606060b882df58dd61e951c93952f65

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/entry.DVIo1EG1.css HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsinsightloop.com/
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"8c-M4FJxkKyMRmtARLRgJKFCgKaN54"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ssmG9MpERoYGbwiXI93WYI4fyXMTcOGJBYOTYv8SuCROrJvlT7vX3I%2BV2mdFEcoNh6ljYCkP%2BEhPrx2B8xUh%2BBMaVPOsSKFRW3Iv2x0MjqJoPXSVhKd8AsPQZaWkCnCWaKr6h%2FUp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e92a38feb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19969&min_rtt=19398&rtt_var=96&sent=393&recv=140&lost=0&retrans=0&sent_bytes=505291&recv_bytes=4665&delivery_rate=8388333&cwnd=338&unsent_bytes=0&cid=05dd446050790eea&ts=756&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/app.C-9zoJlV.css

104.21.80.1

200 OK

93 kB

URL GET
newsinsightloop.com/_nuxt/app.C-9zoJlV.css
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type

Size
93 kB (93406 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/app.C-9zoJlV.css HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsinsightloop.com/
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"16cde-9bgj2qPwDbcm0S7m6Qc3cqxmGNk"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: HIT
age: 133368
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dvd3k9N1cYHAbSPawBXXzJxqn0MuFs%2FQU4a5hf1k1YWm%2B9QBg%2BJKHtvH%2BL1tbO2ESzy0fkhlUQ%2BrPqKJYOgF7AOdwrzgCt1%2BxdVxIPltbUOdIeB0nLhTgopYVCBJv4vlsTdhRtLa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e93a4cfeb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20920&min_rtt=19454&rtt_var=1671&sent=42&recv=35&lost=0&retrans=0&sent_bytes=42368&recv_bytes=2571&delivery_rate=1111334&cwnd=258&unsent_bytes=0&cid=05dd446050790eea&ts=675&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/_nuxt/builds/meta/6e8de725-6c6d-45d8-91b7-5cd5e8c951b3.json

104.21.80.1

200 OK

139 B

URL GET
newsinsightloop.com/_nuxt/builds/meta/6e8de725-6c6d-45d8-91b7-5cd5e8c951b3.json
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
139 B (139 bytes)
Hash
562cca0d4e6e92c9cbd8c8432475069c
2705ff5b1865841ee449c88965e301567c344d43
c75de04af1de7cb65f43016ee51c3e958a418b8f7093f19f3e9f7a93ca9ce39b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/builds/meta/6e8de725-6c6d-45d8-91b7-5cd5e8c951b3.json HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: application/json
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,HEAD,GET
access-control-allow-headers: *
access-control-expose-headers: *
access-control-allow-credentials: true
x-dns-prefetch-control: on
vary: Accept-Encoding
etag: W/"8b-vrPbtn0Npns0CQsDgGLK0R/VKTg"
last-modified: Fri, 07 Mar 2025 07:45:04 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WYk5gaQl32C97PpndtmNcZYRaIJdaEYZZqArIf5Yp7rloU0tXyjqA%2FL4kzDLPxgqZbwDnVLXPRPApQXCA2y4EBuZQbtwFuhkxnLYW0GaW3hxc5lRIxIHn5rQyLq%2BTGlnv6WNp1QT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920247e93a5cfeb5-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19398&rtt_var=63&sent=331&recv=124&lost=0&retrans=0&sent_bytes=426221&recv_bytes=4665&delivery_rate=6980065&cwnd=306&unsent_bytes=0&cid=05dd446050790eea&ts=747&x=0"
X-Firefox-Spdy: h2

newsinsightloop.com/.cdn/lna/3a8241/6512bd/63750d01b51d5/35c63750d01b51f2.jpeg

104.21.80.1

200 OK

52 kB

URL GET
newsinsightloop.com/.cdn/lna/3a8241/6512bd/63750d01b51d5/35c63750d01b51f2.jpeg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsinsightloop.com/
Certificate
IssuerCLOUDFLARE, INC.
Subjectnewsinsightloop.com
Fingerprint84:C7:87:EC:4B:18:5B:01:98:A3:19:43:FB:20:6A:70:B3:85:04:2C
ValidityTue, 28 Jan 2025 11:15:57 GMT - Mon, 28 Apr 2025 11:24:42 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 374x281, components 3
Size
52 kB (52299 bytes)
Hash
eea3f35d627929a8e55ae6d284e7d63f
bd861c976319e7d4d9bbeec131062636396bf135
32dee5a9d35987b7dfa3ce7c9aab3d2edfcb7218de82e272d2ca4929430b90bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /.cdn/lna/3a8241/6512bd/63750d01b51d5/35c63750d01b51f2.jpeg HTTP/1.1
Host: newsinsightloop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsinsightloop.com/
DNT: 1
Connection: keep-alive
Cookie: surfer_uuid=982bd1a8-0353-4a98-96ad-864c3ba6346d; trek_uuid=b91f4c5e-d0e9-4ae2-8cd0-7cd5668bf66e; visit_uuid=ae6215c1-ad3c-4d59-ba91-829485cdc2dd; -812165315=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 08:08:02 GMT
content-type: image/jpeg
content-length: 52299
last-modified: Wed, 16 Nov 2022 16:17:05 GMT
etag: "63750d01-cc4b"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sa0nhWaWBF%2FqtLQ5ckZPZu6U0Yms2q9YRWp8UcFt4VDAoijjUOG87IGqrU0lnUE67FdWsQ7aHlaNg%2Bgogo6NGOxFspfdXdDts%2Ba95zIB7k36zs7Cy4geJdR5fZnspLS7Qk1jQmy%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920247e94a8efeb5-AMS
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19398&rtt_var=63&sent=291&recv=124&lost=0&retrans=0&sent_bytes=372725&recv_bytes=4665&delivery_rate=6980065&cwnd=306&unsent_bytes=0&cid=05dd446050790eea&ts=745&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML