Report - newlandred.com/

Report Overview

Submitted URL
newlandred.com/
IP
202.92.7.191
ASN
#45899 VNPT Corp
Submitted
2022-09-27 06:50:13
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
146

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
newlandred.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	34 kB	3.0 MB	202.92.7.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.38.146.2
source.wpopal.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	590 B	138 kB	104.21.90.71
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	6.4 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.3
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	66 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	7.7 kB	142.250.74.10
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.4 kB	242 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed
2022-09-27	medium	newlandred.com	Sinkholed

Files detected

URL
r3.o.lencr.org/
IP
23.36.76.226
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
1.6 kB (1553 bytes)
Hash
4db4c0bdffcd06df2e5ede13e73cf6d3
0f2915823337f5767554bfbb10c51b0145303e9a
4d9b21be89e30b6b869d01a07e5aa83f4f3b6102c6d20ed1aadbbc7c519f03e1

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (44)

	URL	Size	First Seen	Last Seen
	newlandred.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3	122 kB	2023-03-07	2024-05-09
Pretty URL newlandred.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:40 Last Seen2024-05-09 15:01:18 Times Seen972 Hash 09d0554a0e9a8751df4fb6bd4a984dc7 1b1c5e859b07c34c5a3e643eb40eab76bfc7b0c8 41d764db49ec1705c84b60b85bc505a0997616846bf4a8b52849bfcaf8d21909 Loading...

	newlandred.com/	2.3 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-05-10 08:19:03 Times Seen4827 Hash 6f740b956919fbaa673bb496be184ac1 fa7d2aef8069f1be31c655fb889c897eae36757a c8d83f1bd6a850a6f197b9bcce38828132ad627358b9c2c78e7c4bef4d22c304 Loading...

	newlandred.com/	814 B	2023-03-07	2024-05-10
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-05-10 08:00:28 Times Seen1515 Hash 23cf2c7af3b45114175019972b07a0b8 adf17024a1fa3a00bc6eae0c67244cfba15e8712 5cbf7f9ad6b7e0e058648ddcfa9834e6b38152d133838352b2b51aa4ae5989b8 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery-parallax.js?ver=1.9.6	325 B	2023-03-07	2024-01-28
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery-parallax.js?ver=1.9.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen49 Hash e30b3975410a59bcb9839cc8346ce520 6328748dcee8f4a0993a2742a8a5db4f4e3d870f 585145500968af7ae86cd7615c6722f20df882908c98b558a533f8ed72b59a14 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/mlpushmenu.js?ver=1.9.6	10 kB	2023-03-07	2024-03-12
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/mlpushmenu.js?ver=1.9.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-03-12 09:54:32 Times Seen103 Hash b892a6df5eefbcd5b4372c6dc359c54c 9a64d526809a9bd8d23198f8a971934f18499b67 0393c75f3cfc89d714d568ea8ac8ad01b7e07e02edcb5369de969f3b438d71ae Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/elementor/frontend.js?ver=6.0.2	35 kB	2023-03-08	2023-03-08
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/elementor/frontend.js?ver=6.0.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2023-03-08 02:19:03 Times Seen1 Hash 240f9b51dff082382bf6448b6e013241 85a7b19100597a479f5f4e4408fa8432f712b74a 8531513b09fb639b002cd0cc7061b9ace1dd04f04570ea69b4f09a7f340b0d51 Loading...

	newlandred.com/	1.1 kB	2023-03-08	2023-03-08
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2023-03-08 02:19:03 Times Seen1 Hash 7ae295f22ef35750195e4ae3b004484d f2b5e0d031948f14cbd5df2eb62fbc23b8a68ba1 2c40cf64ef07b9ec4951b4d7c35e0cbc423c30e72268940c42141e33ca82f957 Loading...

	newlandred.com/wp-content/themes/rehomes/assets/js/libs/owl.carousel.js?ver=2.2.1	104 kB	2023-03-07	2024-01-28
Pretty URL newlandred.com/wp-content/themes/rehomes/assets/js/libs/owl.carousel.js?ver=2.2.1 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen145 Hash 5931613d57f6ac2f00829eefd39a8b15 66304d3e2e5ae465ea3df42d582dd1ebcdf5aa6a 6e60e269abacf471d9157534945925d27747a831d86b5e55b0efc0bcfb152799 Loading...

	newlandred.com/wp-content/themes/rehomes/assets/js/theme.js?ver=1.0	23 kB	2023-03-07	2023-07-06
Pretty URL newlandred.com/wp-content/themes/rehomes/assets/js/theme.js?ver=1.0 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2023-07-06 09:07:09 Times Seen7 Hash 0dfff8b88fee5303b37616199aba7b07 2357ede3a677827ee509145f7fe78bacfb2e3550 695581d15344858eabdb89150ba27fdcd12c4e73eaac3558657ee18761e2feaf Loading...

	newlandred.com/wp-includes/js/wp-util.min.js?ver=6.0.2	1.3 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-includes/js/wp-util.min.js?ver=6.0.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-10 10:07:04 Times Seen2762 Hash 8637362089372427b52fa10a43d8109c 6009bed674718329dce6055ab09fa95181162d81 b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/carousel.js?ver=6.0.2	4.4 kB	2023-03-07	2024-03-12
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/carousel.js?ver=6.0.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:20 Last Seen2024-03-12 09:54:32 Times Seen116 Hash 7950b78be956eabcb0420c8832cc33bf 14ac6ba5b8a96c8ca7e7b4bec37b90d9997476d0 9cbbcbb1f4d510721683b8ecfbecdf20af2a397cbecd76cbeebb09e48a4e9ff3 Loading...

	newlandred.com/	215 B	2023-03-07	2024-05-10
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-10 10:26:19 Times Seen2264 Hash 1bb7b821b587959d4c0cc406c49077ff 2cb4827d5cd5a05729418b369019b9c1eb0798ed 1f93a5f6091369b8b6cdb7be01a6c7044ec8c3af0eeac05a5f0dfb3aea2a3e31 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/classie.js?ver=1.9.6	1.8 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/classie.js?ver=1.9.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2024-05-10 09:11:32 Times Seen5111 Hash a9df1cfb76ce492afd9d13f3320272fd 782b9564f015a2ec7bdf9c89e238fab9b44bd587 717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144 Loading...

	newlandred.com/	188 B	2023-03-08	2023-03-08
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2023-03-08 02:19:03 Times Seen1 Hash 5af3a1decc28920099ec6438e2980263 ab9bdaa546bff19bb6d8e17b20d2070f3fd9062a 435bbf14c0e1fdf6ce492140ee98dbc5b1bcdd179d3f22963b9300f97eecb8bb Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/modernizr.custom.js?ver=1.9.6	9.0 kB	2023-03-07	2024-03-12
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/modernizr.custom.js?ver=1.9.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:59 Last Seen2024-03-12 09:54:32 Times Seen256 Hash 7a9ad736fcbd8d99ac7cb282e48f492d bc9582612f11bf96bc56f75347cf54138339778a 8bf0280a5588514ef4978f8099d859364ba6d44dcfb9ee8c59d90486e3ec1267 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/progressbar.min.js?ver=1.9.6	22 kB	2023-03-07	2024-01-02
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/progressbar.min.js?ver=1.9.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:20 Last Seen2024-01-02 00:27:28 Times Seen47 Hash fb52652b763459b1b33b1e0efa95c2e0 aaa06c8699815f84593c2abf86bad09f20615d86 c77f483adff31a6833b4ca519dec3bb8746dac06e8ded0d89c154c53f2c7dda1 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/tooltipster.bundle.min.js?ver=1.9.6	40 kB	2023-03-07	2024-01-28
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/tooltipster.bundle.min.js?ver=1.9.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen20 Hash 9f0a35f19fdb169f5f1b46cae67c14b2 45c2b2a29f140edf1196645f19bd8b1844526592 4d9fda03ae8c7cd694517372e0688f9985ac4f06dbe80cd36de5044d6a5979d6 Loading...

	newlandred.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1	11 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-05-10 06:16:12 Times Seen3545 Hash 58baf0f238d7afc7ab926b8d51e5b559 8515e5f578269e29c048450f78c107935d325dff 2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb Loading...

	newlandred.com/	96 B	2023-03-07	2024-05-10
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-10 10:07:01 Times Seen10766 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	newlandred.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 10:07:04 Times Seen23360 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	newlandred.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16	2.6 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-05-10 06:16:12 Times Seen4702 Hash 9bb8540493a7fe11b229870eb37be165 d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e 4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580 Loading...

	newlandred.com/	1.1 kB	2023-03-08	2023-03-08
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2023-03-08 02:19:03 Times Seen1 Hash c71ff794cc29ede646e60a26bba52ca4 44c75dfd8970436f0c4e56bac8cfb22d87ce0d2c 434a9b05d1c490e6a5381f02f622cb05352c3059a06e5df19f0febacea014f3f Loading...

	newlandred.com/	2.2 kB	2023-03-08	2023-03-08
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2023-03-08 02:19:03 Times Seen1 Hash c57abbf77298fa81516570836c50c815 d1843cc894b2450f4998c63e5177f6ba543b8c18 35a13a6cf37a5730da473c376ca55eda9c4c753dcc481579d53d793c9ccc05f6 Loading...

	unknown	0 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 11:11:37 Times Seen37503086 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/anime.min.js?ver=1.9.6	11 kB	2023-03-08	2024-03-21
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/anime.min.js?ver=1.9.6 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2024-03-21 06:43:46 Times Seen45 Hash 9652f50dd940a177fcbc4a654d3e40a0 05081c42cbe26bc9966c46a69e39de4e7675805d b2d1d4ce4542d87669c58da7a50e19ef6e3466a70b6cda71548b9ad1362c0782 Loading...

	newlandred.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.8	6.6 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.8 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-10 10:07:04 Times Seen4178 Hash e16a8821e5f099c3a619889ea7cf0399 a38e0c736aaf0b019b29b63b00e68c1381502217 a48dea362116d7516a2cf97066a32758d353760ee02dbf900ddff86b02a16473 Loading...

	newlandred.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 10:07:04 Times Seen3681 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	newlandred.com/wp-content/themes/rehomes/assets/js/sticky-layout.js?ver=6.0.2	4.6 kB	2023-03-07	2024-01-28
Pretty URL newlandred.com/wp-content/themes/rehomes/assets/js/sticky-layout.js?ver=6.0.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen27 Hash cb0e643b9725c79447ef12292e6d4942 9de76498685800322d215bdca8797483554982c6 f77afc62a6126a044513b51fd4e091b0e311f20f2d44da0a72d4629e2c69580a Loading...

	newlandred.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-10 10:07:03 Times Seen32113 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.0.2	20 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.0.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-10 10:44:04 Times Seen19975 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	newlandred.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1	6.8 kB	2023-03-07	2024-02-27
Pretty URL newlandred.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2024-02-27 21:30:25 Times Seen201 Hash 60d6b506270fe0c39407722fca879774 ca983fc9c30c3a017403001abd0220dd266e7afa 4a967a69edb3b1b523c71a86b0c665fa93436249640a987aead72a28ca348461 Loading...

	newlandred.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16	64 kB	2023-03-07	2024-04-11
Pretty URL newlandred.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:38 Last Seen2024-04-11 10:46:20 Times Seen116 Hash 877841998ac57f6f0490f387baa7805c 7074c470cf9c8e6ba721bdf57f3de95de1f876de acbcfa9ee0409566b89fe478514f29028b660f9dfb86de730f1246ae0879e32b Loading...

	newlandred.com/	369 B	2023-03-07	2024-05-08
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-08 19:08:24 Times Seen701 Hash 199d3f2d880a45cb76f4d355f5edf5ed e7a478ac7c81b36e22894fd2be69085c6dba81d8 38db327084e1b800d3f263fe22995a999545eb07b01fa350bc2453f940fa8795 Loading...

	newlandred.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1	1.8 kB	2023-03-07	2024-05-09
Pretty URL newlandred.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-05-09 21:45:11 Times Seen3336 Hash 4d43b2fcb5ef3e6afdcd539f46148514 0ff4d5160beb004c439b20c6343044917c629d10 9aa9bb8be2b834059533ce5de7eed3a662ad3d3e70643bbe5f75265075e9bd28 Loading...

	newlandred.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2	19 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 10:15:06 Times Seen38247 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	newlandred.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2	14 kB	2023-03-07	2024-05-08
Pretty URL newlandred.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:58 Last Seen2024-05-08 14:59:07 Times Seen2185 Hash f89263c0c2f24398a1df52eead69f5f8 850e9cfb1680eb1df4365889724e69f38df7bb9e 125ec330f66081e7dc9f2814e9ec18f4e2d0baa1936d497375eedfda7ac12e5c Loading...

	newlandred.com/wp-includes/js/underscore.min.js?ver=1.13.3	19 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-includes/js/underscore.min.js?ver=1.13.3 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-05-10 10:07:04 Times Seen2378 Hash 42aa17e1f850a414638ee4a32a3aa807 2e42d03a5e042701191650c041eae1cfb2d6c7b9 0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4 Loading...

	newlandred.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 10:07:04 Times Seen53735 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	newlandred.com/	1.4 kB	2023-03-08	2023-03-08
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2023-03-08 02:19:03 Times Seen1 Hash c5287b1e9410f7672af94a558b9090dd b6854e23d921b307b49aced446e644dba7208336 bb9e184be1e572922879027730d5b67894dd382a1520a3a030230a7e56cd3dd9 Loading...

	newlandred.com/	154 B	2023-03-08	2023-03-08
Pretty URL newlandred.com/ IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:03 Last Seen2023-03-08 02:19:03 Times Seen1 Hash 1edadcf69a6f064aa0e39d90000f060a 6962d0a2b3ae44de5bc0cb0dbdc9da621d831eca 43826ff6a1528050eb3ea3c8d8f7a358ac4270e87a0d879e3d893c44cd66c6e0 Loading...

	newlandred.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-10
Pretty URL newlandred.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-10 10:15:06 Times Seen69187 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	newlandred.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3	335 kB	2023-03-07	2024-05-08
Pretty URL newlandred.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:40 Last Seen2024-05-08 02:00:47 Times Seen334 Hash 9ec30981fbcfda87c9bc1f21eedd3964 771c2ae5446a934f0ad47ada2632e8d3a253359b 901640c8d3e8ab1178f574cb9b027343a135b08c19283e183adfed11dbb012b9 Loading...

	newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.9.6	24 kB	2023-03-07	2024-05-03
Pretty URL newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.9.6 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:08 Last Seen2024-05-03 18:25:22 Times Seen410 Hash f37878df1d94bbea0dfb7e85612888ec 19df702835ff55ce5a9b76b9974f8597cc528c6a 2fe668f50e1b19f758d3a06ac0c60b0e869c6b31fa1ab43190b6af3dd4f46b8e Loading...

	newlandred.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16	120 kB	2023-03-07	2024-04-11
Pretty URL newlandred.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16 IP 202.92.7.191 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:38 Last Seen2024-04-11 10:46:20 Times Seen114 Hash 2feb29378cc90587b3b41b98afc6161f a025923011166b2c3f6a9b4ae731841390ef1e05 e63f5ec5b15cda8224876406030aeb50dee09cc9b81203ad3156ca563ea06adf Loading...

HTTP Transactions (124)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9792
Expires: Tue, 27 Sep 2022 09:33:14 GMT
Date: Tue, 27 Sep 2022 06:50:02 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 06:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ls_JatOjtnBr3UAZOdSkCZqJZ77ZQ2Wnmru7s-6dBzjccKBJNE3cVw==
Age: 2072

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2191
Expires: Tue, 27 Sep 2022 07:26:33 GMT
Date: Tue, 27 Sep 2022 06:50:02 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Hu5WjRU59wnPcMa7onFtGD0y69V2uhVBV1S1hfXCd2kzJaCPAnxCux4WJRs0fFSom/W0rvD4O5A=
x-amz-request-id: 0ZJF6X5APRBE2ZKR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 27 Sep 2022 06:46:43 GMT
age: 199
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 06:50:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 06:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 06:52:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HSD1yBPpcudDDz4rFhRNO7dOMj9f3scT-ymDQ1eKRHKt_k_tKMvrIw==
Age: 2356

newlandred.com/

202.92.7.191

301 Moved Permanently

0 B

URL HTTP/1.1
newlandred.com/
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://newlandred.com/
content-length: 0
date: Tue, 27 Sep 2022 06:49:14 GMT
server: LiteSpeed
connection: Keep-Alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4903
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 06:50:02 GMT
Last-Modified: Tue, 27 Sep 2022 05:28:19 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.38.146.2

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.146.2:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3gZsJxn29zcR2TJmBJhu8A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7z4PJPcqL4CpCqzQRyk81f8pHZQ=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 06:50:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 06:50:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 06:50:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

newlandred.com/wp-content/themes/rehomes/assets/css/opal-boostrap.css?ver=6.0.2

202.92.7.191

200 OK

13 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/css/opal-boostrap.css?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
13 kB (12851 bytes)
Hash
332ecb4c56809f81690426bdf53ec7de
f817f15ec4b8223799eac15ba0765edfc717c4ad
086a7a855b0e0e75c181c568cc337b76792ad53721ae8f055e17401d18df026c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/rehomes/assets/css/opal-boostrap.css?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:15 GMT
etag: "1b667-5fe8b4ee-199478a;br"
last-modified: Sun, 27 Dec 2020 16:23:10 GMT
content-type: text/css
content-length: 12851
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16

202.92.7.191

200 OK

446 B

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (3815)
Size
446 B (446 bytes)
Hash
5f9c44bf359e78bc08f372b4566cf9f2
66e79a99146b89858a3103f5cc5b1fe2957cc562
170d737cda3ae4cab1d4d0f6d03dd02484f1991cc41ae929ee9c02d0b37cebea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:15 GMT
etag: "f0f-5ff9bdbe-20da2fe;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: text/css
content-length: 446
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4990
Expires: Tue, 27 Sep 2022 08:13:14 GMT
Date: Tue, 27 Sep 2022 06:50:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4990
Expires: Tue, 27 Sep 2022 08:13:14 GMT
Date: Tue, 27 Sep 2022 06:50:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

1.6 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
1.6 kB (1553 bytes)
Hash
4db4c0bdffcd06df2e5ede13e73cf6d3
0f2915823337f5767554bfbb10c51b0145303e9a
4d9b21be89e30b6b869d01a07e5aa83f4f3b6102c6d20ed1aadbbc7c519f03e1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4990
Expires: Tue, 27 Sep 2022 08:13:14 GMT
Date: Tue, 27 Sep 2022 06:50:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4990
Expires: Tue, 27 Sep 2022 08:13:14 GMT
Date: Tue, 27 Sep 2022 06:50:04 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9163 bytes)
Hash
deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 33057
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F334b6513-7266-4f03-aae2-328c1b58a30e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10864 bytes)
Hash
56c3768b851e6a5206cbfbe3f5a97cae
2a2fabd9f9792daf9c058fc754d5616267b703f1
668dba22a0c81c4580637806c293521b176512b18ebcc2fe951be2f27f43134d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F334b6513-7266-4f03-aae2-328c1b58a30e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10864
x-amzn-requestid: a6be937a-3e8f-4dad-bbca-f28554f5ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioQqFHsoAMFxXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420d0-78fecb9e2f76416044839a35;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:08:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: l-svEjPVAfeYvCQAHsARjTk9PNdkVGUJA_2415312kWF2x6MDI7o7A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 07:52:33 GMT
age: 82651
etag: "2a2fabd9f9792daf9c058fc754d5616267b703f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe94c315c-bcc5-4538-9c7b-7c0a9f2dccbc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7146 bytes)
Hash
2267eb0a20554688393db616344441ee
49546314082f2e4f4c4c2686cc0ca281ae6bae47
4e37955fb99beb25ceb9deb7c4398914af4192c2e3614e5d68cdafa8c85b256e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe94c315c-bcc5-4538-9c7b-7c0a9f2dccbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7146
x-amzn-requestid: 0470759c-7b3e-4e73-a4fa-15f9f3919834
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASNOGKzIAMFfaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffd87-7856f7180fa1045a6092b335;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:04:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Kxa2h6hEjuAgCj3z9G2K1FzuWUMA3c5-9LM8KpjqmdP9Zm8RPoSxGg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 07:31:34 GMT
age: 83910
etag: "49546314082f2e4f4c4c2686cc0ca281ae6bae47"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13213 bytes)
Hash
62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 33067
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35b718e0-3d37-4447-a38f-12fa37aeae57.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6487 bytes)
Hash
e88b78ede0e4583585d6bb805fb39470
edff303440c5972381295b4b2602bd3f77f6702a
ce55a1ff5c71ec43884b74a08cd32ef75cb0632a91f3fe8b150f5ead499375a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35b718e0-3d37-4447-a38f-12fa37aeae57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6487
x-amzn-requestid: f292e8c1-3e79-4f59-a3aa-6863330835d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VioHHQIAMFlmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfaa-65955b7d7998a0dc6eded103;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx3JPGA6ZeR_7v1MXPDgc2T3RQ2mm48Q9Cb9kydTN9O1OUHlXO4NxQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 23:03:14 GMT
age: 28010
etag: "edff303440c5972381295b4b2602bd3f77f6702a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6390 bytes)
Hash
14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:37:50 GMT
age: 18734
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16

202.92.7.191

200 OK

14 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (65496)
Size
14 kB (14454 bytes)
Hash
79b525f80c6161c78d0ca09c4617cdf4
87a71839909c3a72f961196c1e02a022e77cdd2d
0ec45af670eeec414d4f1904a4eaf9675b41abd30a2c9fbe80e6f93fdf27e314

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:15 GMT
etag: "1b655-5ff9bdbe-20da301;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: text/css
content-length: 14454
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/themes/rehomes/style.css?ver=6.0.2

202.92.7.191

200 OK

21 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/style.css?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Unicode text, UTF-8 text
Size
21 kB (21302 bytes)
Hash
ac53b73bc651767d5bf49e5b294fb06a
a22fc4122c83276625cb20250486aa798dd6ed78
4019d0db885a283c6c6e73cbc896fb02fa4aa4e942c9d1a2f13f0782eac50477

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/rehomes/style.css?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:15 GMT
etag: "1dbe0-5ffe974b-85747a;br"
last-modified: Wed, 13 Jan 2021 06:46:35 GMT
content-type: text/css
content-length: 21302
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2

202.92.7.191

200 OK

4.6 kB

URL HTTP/2
newlandred.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (15660)
Size
4.6 kB (4584 bytes)
Hash
8b21827e4cc06ac9d6c686e463be1fb2
395e1545d76868371b3110d48179027eadef1b39
bf023dff36bcaa1d34063e0804ebfc1598550f64915890b39a2afbe95b8aed8a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "48b9-628d9610-608532d;br"
last-modified: Wed, 25 May 2022 02:36:00 GMT
content-type: application/x-javascript
content-length: 4584
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/css/elementor/style.css?ver=1.9.6

202.92.7.191

200 OK

18 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/css/elementor/style.css?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (1406)
Size
18 kB (18272 bytes)
Hash
28ecb9596daf384edaae839823ce1f14
40c23fbb8faace6bfa3138d6d3975e72e90b98eb
68918445398a91250d49d4b05bb4bd1ef716d584b0614fdf65487e1ff84f387d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/css/elementor/style.css?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "23f2d-5ffd1be8-604ee09;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: text/css
content-length: 18272
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/css/tooltipster.bundle.min.css?ver=1.9.6

202.92.7.191

200 OK

957 B

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/css/tooltipster.bundle.min.css?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
957 B (957 bytes)
Hash
4788426562c140d074ee4d69e5d08839
9364ac53f8ce6eb2bda648b730d54e2cf24f31ac
442c86d71ee253288aacb92dcc6c3ba0ac2f32e55c35c1bf24e6d4cdaa81a847

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/css/tooltipster.bundle.min.css?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "1ab9-5ffd1be8-58c964b;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: text/css
content-length: 957
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/elementor/css/post-122.css?ver=1610202566

202.92.7.191

200 OK

709 B

URL HTTP/2
newlandred.com/wp-content/uploads/elementor/css/post-122.css?ver=1610202566
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (4318)
Size
709 B (709 bytes)
Hash
758406a1be66054a60a85dfc0fd4cf5b
a50d455e4e03e0f65f29646621860089bc512763
e4e2700c86e13f583ca649263fdf166db5d8dee67bacdf30a76f46606b3fe8ca

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-122.css?ver=1610202566 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "15d9-5ff9bdc6-789baf1;br"
last-modified: Sat, 09 Jan 2021 14:29:26 GMT
content-type: text/css
content-length: 709
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/css/magnific-popup.css?ver=6.0.2

202.92.7.191

200 OK

1.7 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/css/magnific-popup.css?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
1.7 kB (1684 bytes)
Hash
6fbba5bef101043689dde0b1e75190f8
3f599bae0365870f28b1ae86ee32893574c30be9
56a6886729d0ece936afd1a0fa105e32e7890faf9da64e203148272d1b417c58

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/css/magnific-popup.css?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "1b8e-5ffd1be8-58c964a;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: text/css
content-length: 1684
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/elementor/css/post-161.css?ver=1610505831

202.92.7.191

200 OK

1.2 kB

URL HTTP/2
newlandred.com/wp-content/uploads/elementor/css/post-161.css?ver=1610505831
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (9555), with no line terminators
Size
1.2 kB (1190 bytes)
Hash
527a1a629832e7b28590b7da1f0c1748
41911b35b608d6c438ce64c7a854eb1b63e547b5
629c1ac4ee1d53ba74e832059c2e62f24792f2dac4aa39a084a40bba11531528

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-161.css?ver=1610505831 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2553-5ffe5e67-789bb07;br"
last-modified: Wed, 13 Jan 2021 02:43:51 GMT
content-type: text/css
content-length: 1190
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2

202.92.7.191

200 OK

11 kB

URL HTTP/2
newlandred.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (43771)
Size
11 kB (10775 bytes)
Hash
55bbab41f9fc950b6f2939d5a5b11d98
d3fc3d679d075648a22d83f95a08773b4e4a3383
2a5b528b068ef00c9d5acc922818724fe63fd5a8ad107d2d8831797fd244afb1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "15b64-62ce2e2d-a8397e5;br"
last-modified: Wed, 13 Jul 2022 02:30:05 GMT
content-type: text/css
content-length: 10775
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2

202.92.7.191

200 OK

622 B

URL HTTP/2
newlandred.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
622 B (622 bytes)
Hash
d6cf2281df009b0d9638734715b84737
b9cb8f6090734ce15e9ca428e1cc9ea84476be40
5f7da00edbd9168db5eacc6c773dc846050430a2c7b2e0c41bb5df4f251dfedc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "780-5fdb7dbc-48212f2;br"
last-modified: Thu, 17 Dec 2020 15:48:12 GMT
content-type: text/css
content-length: 622
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3

202.92.7.191

200 OK

12 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
12 kB (12041 bytes)
Hash
197779a46b586658eb5d79d1521b0c38
b2b3a1e86c889cd099532ce173b46cda62b2350c
a18614ae8f493b53a04bd501d02a32caff28f13eaa1ebf45ddbb5f6bac9b5ba2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "eb81-5faca9ea-1994785;br"
last-modified: Thu, 12 Nov 2020 03:20:10 GMT
content-type: text/css
content-length: 12041
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/css/custom.css?ver=1.9.6

202.92.7.191

200 OK

514 B

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/css/custom.css?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
514 B (514 bytes)
Hash
e842ed28c52cff970d97e7a23ce7af37
38069076c7a34c9e94733c2423ef3346d156459b
5863bcd3b644a3d9a099f77c7ea264ee609b13a59977ed6435d76ac4d68311eb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/css/custom.css?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "845-5ffd1be8-58c964e;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: text/css
content-length: 514
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1

202.92.7.191

200 OK

3.2 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (16591)
Size
3.2 kB (3186 bytes)
Hash
4f9de37046dea7e038309ba395e461e0
7134115d06109995a4824778e471472cc68209bb
2c02c68ed345be5dc88a264165d8dc34fb90180f2c2982998f4d0893b60cfdc2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "40fc-5ff9bdbe-b8026e1;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: text/css
content-length: 3186
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16

202.92.7.191

200 OK

2.4 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (10019)
Size
2.4 kB (2430 bytes)
Hash
f6a7750ecc3066d36b9c0f0680f2974a
87371601d407215ff9e33b7371b313cedd80425f
f1706a8e7d390ea19f9a5b21c4188053bb2eb88683d4ab7b8a5cc81ca419c1cb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "4824-5ff9bdbe-6801412;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: text/css
content-length: 2430
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/elementor/css/post-2223.css?ver=1610202567

202.92.7.191

200 OK

348 B

URL HTTP/2
newlandred.com/wp-content/uploads/elementor/css/post-2223.css?ver=1610202567
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (1127), with no line terminators
Size
348 B (348 bytes)
Hash
e030af2863ce8f40199eb59c284df503
0f798162387a4cc5d5edb8fc87c399c2337ef470
8f8a286e624704f7af1432830532fb38223a72f958c8eecd804aa429e2419c91

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2223.css?ver=1610202567 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "467-5ff9bdc7-789baf3;br"
last-modified: Sat, 09 Jan 2021 14:29:27 GMT
content-type: text/css
content-length: 348
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/elementor/css/global.css?ver=1610202567

202.92.7.191

200 OK

1.5 kB

URL HTTP/2
newlandred.com/wp-content/uploads/elementor/css/global.css?ver=1610202567
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (8898)
Size
1.5 kB (1473 bytes)
Hash
154d45da5f267ce613dc955152f4cea6
880c7659eaeff08121504add30a27ced63185adc
9936371378f99a5cbc4247588dfa235bd51278eeb7edafe26be9c8327b9b24ba

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1610202567 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "4374-5ff9bdc7-789baf4;br"
last-modified: Sat, 09 Jan 2021 14:29:27 GMT
content-type: text/css
content-length: 1473
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/elementor/css/post-76.css?ver=1611069311

202.92.7.191

200 OK

2.6 kB

URL HTTP/2
newlandred.com/wp-content/uploads/elementor/css/post-76.css?ver=1611069311
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (37602), with no line terminators
Size
2.6 kB (2632 bytes)
Hash
eb468be2a2cf1763ba71dcb00e1fa640
071d091c597b15b251814bcc84c5e7f73e4b48b5
ad74824b6aa6bda69e2d10177ce6912d8d107412521aec68ecff633846d3fdb3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-76.css?ver=1611069311 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "92e2-6006f77f-789bafa;br"
last-modified: Tue, 19 Jan 2021 15:15:11 GMT
content-type: text/css
content-length: 2632
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/themes/rehomes/assets/css/carousel.css?ver=6.0.2

202.92.7.191

200 OK

1.6 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/css/carousel.css?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
1.6 kB (1644 bytes)
Hash
f05bddb0cf518ff040761493d38adde5
aeff3fd7541dcea8da5cb048c73559e5b6d5bd25
c1a465023503b0297442ad1327d9aab71f2ba092f372f34ad1eaea0a69fdad8e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/rehomes/assets/css/carousel.css?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2094-5f4775a0-1994787;br"
last-modified: Thu, 27 Aug 2020 08:58:08 GMT
content-type: text/css
content-length: 1644
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

202.92.7.191

200 OK

30 kB

URL HTTP/2
newlandred.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (65447)
Size
30 kB (30118 bytes)
Hash
9f5dbb0b07808181d3bceeeb95120419
ff69f040200c921ffbcd3e01ffddee3c6d63a30d
4398cce5635c0d26b99ca763fb8174721a50403908ec2ad688902891938bfefe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "15db1-60f78a7b-98aeb4e;br"
last-modified: Wed, 21 Jul 2021 02:46:19 GMT
content-type: application/x-javascript
content-length: 30118
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

202.92.7.191

200 OK

4.0 kB

URL HTTP/2
newlandred.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3992 bytes)
Hash
e32c5db077b45cddc36bbdec187ba4c4
dfdbe8e2f28238b3a218785514a452884aa789a8
51bd9696f8c91a26501c40b40842e759b5cbcd352b3ce7d1f6875996abec46f6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2bd8-5fb63b62-98aeb46;br"
last-modified: Thu, 19 Nov 2020 09:31:14 GMT
content-type: application/x-javascript
content-length: 3992
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/modernizr.custom.js?ver=1.9.6

202.92.7.191

200 OK

3.8 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/modernizr.custom.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
HTML document text\012- HTML document, ASCII text, with very long lines (8820)
Size
3.8 kB (3762 bytes)
Hash
a707d68541cb2c419123115509dabb6e
fbdbb3f146f3ba681d63a366ff1d22f9201dfdfc
48fd593cd06558b3df5d9ef6ece9bbb56c7e82749ad0dcaf04372e06949291a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/modernizr.custom.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "232b-5ffd1be8-b840b19;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 3762
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3

202.92.7.191

200 OK

44 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (42889)
Size
44 kB (44412 bytes)
Hash
b2fcf6e086e039b2439aad26aa9ac402
2a86ec1cab5acd4e8e78da154219e55e4eee5973
d6031c5b8f2aa112a0bbcaf2b28d66dd3a0cff5a90ad63c753123f95c8d7fa25

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "1db7a-5fc4ac78-689bae1;br"
last-modified: Mon, 30 Nov 2020 08:25:28 GMT
content-type: application/x-javascript
content-length: 44412
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3

202.92.7.191

200 OK

79 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (64270)
Size
79 kB (78937 bytes)
Hash
cc8c2aa25b89b429b01abbd36383bf44
958163ea3f9d7108c65248a264c0b4a7a6fac369
fa7ff4388cd30837d73e990b13deb597e9d2973a531aa13695eddc05a265355d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "51bd9-5fd095ce-689bae2;br"
last-modified: Wed, 09 Dec 2020 09:15:58 GMT
content-type: application/x-javascript
content-length: 78937
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/themes/rehomes/assets/js/libs/owl.carousel.js?ver=2.2.1

202.92.7.191

200 OK

18 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/js/libs/owl.carousel.js?ver=2.2.1
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
18 kB (18361 bytes)
Hash
29ff64714407979304d6490ff3bb8ec1
cac892d62bbaed96f3a6116d35e09896f93dff39
51991fd78e992548dc86bacc31138c73666fe400829660ffc3ac2abb45c3ef5a

HTTP Headers

GET /wp-content/themes/rehomes/assets/js/libs/owl.carousel.js?ver=2.2.1 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "1952f-5f4775a0-4830167;br"
last-modified: Thu, 27 Aug 2020 08:58:08 GMT
content-type: application/x-javascript
content-length: 18361
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/carousel.js?ver=6.0.2

202.92.7.191

200 OK

1.6 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/carousel.js?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (4375)
Size
1.6 kB (1552 bytes)
Hash
1e4b8a8ed3ca89c9f2a107c43b85e1a6
0c499c6964eb74e78f75084499333f0aaad050e9
d12da2ea031da7a174e891954b8cbb6283d346713a4382f0ab68eed4306c18ec

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/carousel.js?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "113d-5ffd1be8-98ad840;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 1552
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css

202.92.7.191

200 OK

6.8 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (372)
Size
6.8 kB (6793 bytes)
Hash
613a948793a84f53eba813b145a1040c
53417536cffea492029c764692a6c4d3f9e30a71
849a20521a6cc151ea6b998d58ed93bc9752b7014adb8b84c026085c83c12d02

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "9027-5fa9fa9e-30e07bf;br"
last-modified: Tue, 10 Nov 2020 02:27:42 GMT
content-type: text/css
content-length: 6793
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/fonts/pe-icon-7-stroke/css/pe-icon-7-stroke.css

202.92.7.191

200 OK

1.7 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/fonts/pe-icon-7-stroke/css/pe-icon-7-stroke.css
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1682 bytes)
Hash
b5e5755f8075df5e7a00d95b622c7a51
73d8a742f4e164ce40acda9236f5b12d41d83d55
78c2da028865595463d45dc024629cb39e59bbf31cf05ffa400153eae3c28ba6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/pe-icon-7-stroke/css/pe-icon-7-stroke.css HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2886-5dea1416-5144840;br"
last-modified: Fri, 06 Dec 2019 08:40:54 GMT
content-type: text/css
content-length: 1682
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/progressbar.min.js?ver=1.9.6

202.92.7.191

200 OK

6.8 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/progressbar.min.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (22496)
Size
6.8 kB (6769 bytes)
Hash
f52555d389ab01183918f31a4504414b
4a72080c955502b35aa6681cd6a8da6a64db5c87
6fae0f7895ef7ebeddbe0ccd730393f3a161d5f6fcfd7d63dd0a3fc3fdeecd62

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/progressbar.min.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "580c-5ffd1be8-b840b14;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 6769
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/TweenMax.min.js?ver=1.9.6

202.92.7.191

200 OK

37 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/TweenMax.min.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (32059)
Size
37 kB (36644 bytes)
Hash
42fa083522494b4116bc29bb1ccc6606
42a1e1bce6e3cce97cda7004e8dab2a7db56f3a2
e9fdbb8d4cd417b70b03fa793594ba1d63b63a68c340ac25c24d021b1b05f009

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/TweenMax.min.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "1c276-5ffd1be8-b840b1e;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 36644
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.8

202.92.7.191

200 OK

21 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.8
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (65493)
Size
21 kB (20780 bytes)
Hash
067a4189d179458c60ae4e4c7e14cb98
55de3053e09c9289aac71cf81db790dcf964c19e
a0da354e93644e0f989f7871029ab628b509a568a05c8b2131f09d5adddf6546

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.8 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "33811-5fbf6dce-a83795a;br"
last-modified: Thu, 26 Nov 2020 08:56:46 GMT
content-type: text/css
content-length: 20780
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/tooltipster.bundle.min.js?ver=1.9.6

202.92.7.191

200 OK

9.7 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/tooltipster.bundle.min.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (39810), with no line terminators
Size
9.7 kB (9656 bytes)
Hash
152dad7869c2fd5163b5bf894f4a4809
42bb1d7c0a47d516a7fc4bcd9ef6c457d88ea9b6
f3e67fa1c61d7091caacceb33d1a72b7088d8bab1bbb73b184456e9220d624d5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/tooltipster.bundle.min.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "9b82-5ffd1be8-b840b10;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 9656
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.0.2

202.92.7.191

200 OK

7.0 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (20087)
Size
7.0 kB (7041 bytes)
Hash
c1333b01cb8341295cffadef52b28cbc
5024df02ec362d9add973055822bc310f837beef
83a88e588807852d974d6cca700b73df305a1a39131c71370a257327b93ad90f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/jquery.magnific-popup.min.js?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "4ef8-5ffd1be8-b840b0a;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 7041
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/mlpushmenu.js?ver=1.9.6

202.92.7.191

200 OK

4.0 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/mlpushmenu.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (2051)
Size
4.0 kB (3956 bytes)
Hash
520a7c40d259146a01b0e2c9998ff168
4973504b7ad2e25f7a887edfd1a8c5381735fa9d
7774476e3b1c8bb8e7a6969b66e1bdff7488de64d1aae02ba17a5bb97a77cacd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/mlpushmenu.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2849-5ffd1be8-b840b13;gz"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 3956
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/classie.js?ver=1.9.6

202.92.7.191

200 OK

616 B

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/classie.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
616 B (616 bytes)
Hash
697e4e3c85ac0c29c96f6d077fdb7d81
ff67937d84701380c0ceddfb3f1447e1233aa493
16edcf80c403f36618f82aa7a4adda6f5b297e4750d63b3a1c53cb2d89a0a9e5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/classie.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "72b-5ffd1be8-b840b0e;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 616
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery-parallax.js?ver=1.9.6

202.92.7.191

200 OK

173 B

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery-parallax.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
173 B (173 bytes)
Hash
e3a758a62da19eb157b29b44430008e1
759d413ecf032084064eac847836df603134a6b2
4d0164ccc3bbbc0d571acc58381e4939de4054185733215741b5f4f0e8de124c

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/jquery-parallax.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "145-5ffd1be8-b840b11;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 173
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2

202.92.7.191

200 OK

3.7 kB

URL HTTP/2
newlandred.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text
Size
3.7 kB (3682 bytes)
Hash
09bc5f15bd52e8b1213629b7044c8603
8190900af1cbacd7ef583c9b5e0ea6538a4aec69
e636d6dd4c5b6cfa6434ddc74d57040cd81c8a051c4d6043ad123a0ecadfdd9c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "37c8-5fdb7dbc-50df04f;br"
last-modified: Thu, 17 Dec 2020 15:48:12 GMT
content-type: application/x-javascript
content-length: 3682
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/themes/rehomes/assets/js/theme.js?ver=1.0

202.92.7.191

200 OK

4.2 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/js/theme.js?ver=1.0
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (564)
Size
4.2 kB (4179 bytes)
Hash
ace8759cecc424d5f4a2b7c444cd033b
c8e1e8c3b5abd43be619fd7857fca3fbcae44472
e61b7ebd8b70f8f79c1639f9fef677a6d884a69b987e1a08832c0cf274f8ecc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/rehomes/assets/js/theme.js?ver=1.0 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "5a62-5feb45c6-4041bc2;br"
last-modified: Tue, 29 Dec 2020 15:05:42 GMT
content-type: application/x-javascript
content-length: 4179
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-includes/js/underscore.min.js?ver=1.13.3

202.92.7.191

200 OK

7.2 kB

URL HTTP/2
newlandred.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (18876)
Size
7.2 kB (7174 bytes)
Hash
34cc884f0d68689390097f8a493cc151
1c12f30ebf95d2a4a50c41ee09a3c5e4dd2f26aa
ec6d6184f9bb5fff0d51872635ed97c98d46faa291e45eeca5c756c35e574939

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "49df-628d9610-6085398;br"
last-modified: Wed, 25 May 2022 02:36:00 GMT
content-type: application/x-javascript
content-length: 7174
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-includes/js/wp-util.min.js?ver=6.0.2

202.92.7.191

200 OK

647 B

URL HTTP/2
newlandred.com/wp-includes/js/wp-util.min.js?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (1305)
Size
647 B (647 bytes)
Hash
6669d997dd0c9ab483aed5144b1614c8
bec4c9c60b474244d786ea75d130be9a33f8421c
00fee66f65cdbc4a1b2cf79227a544f792428e41be4d666c274399a8ca842de2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "53c-60f78a7b-6085339;br"
last-modified: Wed, 21 Jul 2021 02:46:19 GMT
content-type: application/x-javascript
content-length: 647
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/themes/rehomes/assets/js/sticky-layout.js?ver=6.0.2

202.92.7.191

200 OK

1.7 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/js/sticky-layout.js?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (4515)
Size
1.7 kB (1725 bytes)
Hash
b3fdfe91fd6f101303794b12367adb68
f6797f48090a87356b2decefc1a0e4480cae8cd3
7d23c2c83ede9b0cc9cb1368f763de55aeabfcf88bbf8599ccb70ed4db4e5d23

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/rehomes/assets/js/sticky-layout.js?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "11ce-5f4775a0-4041bc1;br"
last-modified: Thu, 27 Aug 2020 08:58:08 GMT
content-type: application/x-javascript
content-length: 1725
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1

202.92.7.191

200 OK

678 B

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (1801), with no line terminators
Size
678 B (678 bytes)
Hash
7bf1beacabfe7502b3379db133b40ab3
5d3d92a8f3a614fe965bab494bc976542ebce550
cecc0132f3c707086fc5e2725faace24364e70562ee8123f6e334914768e47c8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "709-5ff9bdbe-6801da3;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: application/x-javascript
content-length: 678
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=vietnamese&ver=6.0.2

142.250.74.10

200 OK

6.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=vietnamese&ver=6.0.2
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
6.2 kB (6208 bytes)
Hash
e7458a4db49f7ffd725322b1a79eb0e6
5e60372da3f74fc12d53fae689fcc7248f30fcd3
43eafcad4493e97e661fb14eb61170a111f28f68ed41d177ef9af81dd46462e2

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=vietnamese&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 06:50:04 GMT
date: Tue, 27 Sep 2022 06:50:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1

202.92.7.191

200 OK

2.6 kB

URL HTTP/2
newlandred.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (6806)
Size
2.6 kB (2591 bytes)
Hash
4347045d04ac7d49434cf717807b07aa
2547e0cd973f1b5cfa23625379efb2fcb87067db
04c2ecc665db9656bef9b993de545ecb1d56e80df44b511405dd7e57a90895af

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "1abd-5fdc1ad0-607f938;br"
last-modified: Fri, 18 Dec 2020 02:58:24 GMT
content-type: application/x-javascript
content-length: 2591
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16

202.92.7.191

200 OK

18 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Unicode text, UTF-8 text, with very long lines (47306), with LF, NEL line terminators
Size
18 kB (17473 bytes)
Hash
6f790028622395b9ed92133d2f9bbd8b
0159ffe003a51ffa9fbac0449676e96466e9d07d
c6bd6b1fd3d172bdb0a571fec686367363d9178fac0f092668709b5ce6bd735f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "fa7a-5ff9bdbe-5147bd4;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: application/x-javascript
content-length: 17473
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.8

202.92.7.191

200 OK

1.8 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.8
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (6595), with no line terminators
Size
1.8 kB (1762 bytes)
Hash
d3f9feaeb554c06563997217cdba9ebc
2ec2334908f7be607ff9943faab9dc1f81609ef5
6a8afcd59b31545ec30c6966136ecbfa478ec93b5a19ecdc3df25d7c49528ce4

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.8 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "19c3-5eb77086-38c68c3;br"
last-modified: Sun, 10 May 2020 03:09:58 GMT
content-type: application/x-javascript
content-length: 1762
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.8

202.92.7.191

200 OK

39 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.8
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Unicode text, UTF-8 text, with very long lines (39674), with LF, NEL line terminators
Size
39 kB (39344 bytes)
Hash
5b95f96c4d5fb0aaacf5869981bee8ad
153d98aa1ac46209b42be4b1a6fbf5cb7e9b3436
52a74c36f95674228e1fa89e51d393acf6becc4f5bb3d42daf88af5ffc9746be

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.8 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2a09f-5fbf6dce-b83c963;br"
last-modified: Thu, 26 Nov 2020 08:56:46 GMT
content-type: application/x-javascript
content-length: 39344
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

202.92.7.191

200 OK

6.6 kB

URL HTTP/2
newlandred.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
6.6 kB (6622 bytes)
Hash
e2e16e8517ff2fdb0cdc9963f6e6edee
04ad2a9b8f3006d611ab2d9a2e8fadbc249e6cbf
3c49689f85907683c8da5d226bb14a550fcbdaad22582712b774d3ecd67c01b2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "50eb-628d9610-a003213;br"
last-modified: Wed, 25 May 2022 02:36:00 GMT
content-type: application/x-javascript
content-length: 6622
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1

202.92.7.191

200 OK

3.3 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (10725)
Size
3.3 kB (3329 bytes)
Hash
cf83f71cdb3cb2731f99266f771b7e1a
a36520df5d20ea9d802eeeaeb55b3552ee7cadcc
300383eddd6f0f625a8a6f9b75f97e556985aa3724dfc23e74657f10474d49eb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2a6f-5ff9bdbe-789ba7b;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: application/x-javascript
content-length: 3329
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

202.92.7.191

200 OK

2.8 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (12198), with no line terminators
Size
2.8 kB (2843 bytes)
Hash
fac362f53042ae00149855f961e3cd28
20ba41d9525cf54e3d25f4ac3a4170fb2bd04ef9
b98fe6e763ac9aa31a71af5fa8ec27c9121360080b817d279b6a23814c2bfc86

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2fa6-5ff9bdbe-c002705;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: application/x-javascript
content-length: 2843
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

202.92.7.191

200 OK

33 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (65280)
Size
33 kB (33448 bytes)
Hash
73cb5ae7df2c34b479ab7db19b59a5db
51748c5eb8c6cc62d9ff5bdaddf9cb01bdb3357c
385ab6481c88179f1ab36a7610a79b3c99e93fb84a21e5fc1059ae01bcf7d119

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "21f91-5ff9bdbe-b03cf60;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: application/x-javascript
content-length: 33448
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16

202.92.7.191

200 OK

1.0 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (2577)
Size
1.0 kB (1024 bytes)
Hash
cf75938d59b406223c7370f250a0cf79
27474b9d2a0afdb3fb27a37520a41d45b8f27960
f860ff69dc5ccc161390f07a2971a8eba3241e5f84a2771c9d2575a03fbb750f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "a12-5ff9bdbe-a002d29;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: application/x-javascript
content-length: 1024
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/elementor/frontend.js?ver=6.0.2

202.92.7.191

200 OK

6.7 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/elementor/frontend.js?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
ASCII text, with very long lines (31977)
Size
6.7 kB (6693 bytes)
Hash
f7c4d103fae5083f5073c5eef63831dd
8f87c5f51ccfb2eba797bc5e8ec422a617066d62
07e23caf3dda5b4a2bc57b09a5cddf44cc717f0e3605f03f3af8d4e8a800ec23

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/elementor/frontend.js?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "8850-5ffd1be8-a82a8d9;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 6693
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/themes/rehomes/assets/css/opal-icons.css?ver=6.0.2

202.92.7.191

200 OK

7.5 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/css/opal-icons.css?ver=6.0.2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
troff or preprocessor input, Unicode text, UTF-8 text
Size
7.5 kB (7519 bytes)
Hash
b556635a206b7768416d5ab057b2e53b
70b15ee23127d4239dfbbc025eee5c0bcc99a056
b754bff46e3892b2ff51bf04578ee159bd630c85d27332135e204a01b9e2d7d7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/rehomes/assets/css/opal-icons.css?ver=6.0.2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "9ba1-5f4775a0-199478b;br"
last-modified: Thu, 27 Aug 2020 08:58:08 GMT
content-type: text/css
content-length: 7519
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 06:50:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

newlandred.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16

202.92.7.191

200 OK

18 kB

URL HTTP/2
newlandred.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
data
Size
18 kB (18148 bytes)
Hash
331ed0154e733acbdc3689be46263880
b31506fdf378d7332485c5a41bc734545a6f1512
0b34e1ab0c642df54656d444f7739bc8e0a1ef70debc972b0f97c06a52bf202d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "1d5a1-5ff9bdbe-5147bd2;br"
last-modified: Sat, 09 Jan 2021 14:29:18 GMT
content-type: application/x-javascript
content-length: 30618
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKg0F_U5FJl4q.woff2

142.250.74.163

200 OK

9.9 kB

URL HTTP/2
fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKg0F_U5FJl4q.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 9852, version 1.0\012- data
Size
9.9 kB (9852 bytes)
Hash
356d1750f0e6fdf4c890869e40f58381
56b67bbc9c17950e74103583b1f193b8f6102d43
a580be6caf009342b7582b2d8743c3bc78ee1015929cc0408f7d00dfd6e4ba79

HTTP Headers

GET /s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKg0F_U5FJl4q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 19:08:38 GMT
expires: Mon, 25 Sep 2023 19:08:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:52:46 GMT
content-type: font/woff2
age: 128487
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:47:56 GMT
expires: Thu, 21 Sep 2023 19:47:56 GMT
cache-control: public, max-age=31536000
age: 471729
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:21 GMT
expires: Thu, 21 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 472544
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKh0C_UBFJg.woff2

142.250.74.163

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKh0C_UBFJg.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17988, version 1.0\012- data
Size
18 kB (17988 bytes)
Hash
204d40bf273111b6c70162b25963d18c
9dd7191d0d18b1f073c403129b46beadda350242
5d1bba25f89504698be227d0d44550384df97f1448dc1337753fb719d3a770e8

HTTP Headers

GET /s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKh0C_UBFJg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 10:10:40 GMT
expires: Thu, 21 Sep 2023 10:10:40 GMT
cache-control: public, max-age=31536000
age: 506365
last-modified: Tue, 19 Apr 2022 18:48:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2021/01/The_Signature_2.jpg

202.92.7.191

200 OK

183 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2021/01/The_Signature_2.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2021:01:11 16:41:17], progressive, precision 8, 1917x979, components 3\012- data
Size
183 kB (182920 bytes)
Hash
05cc4954c8bf067de6a971d90ed71fd5
8cd71df496e365e02c2944eeed7c0f817406709f
75a2dab2923059f83c1c188ece450fc939e244f2bbe2c9e173727853633c2047

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/The_Signature_2.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "2ca88-5ffc1d66-68bde85;;;"
last-modified: Mon, 11 Jan 2021 09:41:58 GMT
content-type: image/jpeg
content-length: 182920
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKh0C_U5FJl4q.woff2

142.250.74.163

200 OK

9.5 kB

URL HTTP/2
fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKh0C_U5FJl4q.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 9540, version 1.0\012- data
Size
9.5 kB (9540 bytes)
Hash
8bea4db16f93e4d3cfb4ea85f209e710
448352dea81416572491b2d9cd8a5e94dd718a31
95d5187dba0af8ef8e59446f21baadd78f70f03d7bb4ac6147274c5591a74da2

HTTP Headers

GET /s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKh0C_U5FJl4q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9540
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:45:35 GMT
expires: Fri, 22 Sep 2023 06:45:35 GMT
cache-control: public, max-age=31536000
age: 432270
last-modified: Tue, 19 Apr 2022 18:47:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKg0F_U9FJl4q.woff2

142.250.74.163

200 OK

6.7 kB

URL HTTP/2
fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKg0F_U9FJl4q.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6708, version 1.0\012- data
Size
6.7 kB (6708 bytes)
Hash
4c94e7d9ff421bfa9e2cf0a412ee8755
9ef0d36b15766a65fdcbc309d63bce946a64659f
39435c6f279387d16ab83a5f440c30f8c6cecd739a570681bbaa72de0f9cec7d

HTTP Headers

GET /s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKg0F_U9FJl4q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6708
date: Tue, 27 Sep 2022 06:50:05 GMT
expires: Wed, 27 Sep 2023 06:50:05 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:54:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 06:50:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

newlandred.com/wp-content/uploads/revslider/rev_sliderhome_3.jpg

202.92.7.191

200 OK

685 kB

URL HTTP/2
newlandred.com/wp-content/uploads/revslider/rev_sliderhome_3.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x980, components 3\012- data
Size
685 kB (685064 bytes)
Hash
26de94fe2da1117d82fb7873f615bebd
8466435eaafeed636b8b06e8a23b4bbcb8ca4400
d6487e8d72219d239e8965e3973dcfdc65ecd32cf5fd14493897b8e9f7ae5f66

HTTP Headers

GET /wp-content/uploads/revslider/rev_sliderhome_3.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "a7408-5fdc1c2e-932fba0;;;"
last-modified: Fri, 18 Dec 2020 03:04:14 GMT
content-type: image/jpeg
content-length: 685064
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/charmonman/v18/MjQDmiR3vP_nuxDv47jiaJaivQ.woff2

142.250.74.163

200 OK

19 kB

URL HTTP/2
fonts.gstatic.com/s/charmonman/v18/MjQDmiR3vP_nuxDv47jiaJaivQ.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 18900, version 1.0\012- data
Size
19 kB (18900 bytes)
Hash
7b2279627bb2f68fcf3f70d850e303ce
0b533a9597d240c20a4c00849dece816107e5732
a14247ea8e7fa12765f2e22da392531f500afe8064e5a56e269d2f399e203772

HTTP Headers

GET /s/charmonman/v18/MjQDmiR3vP_nuxDv47jiaJaivQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 06:44:46 GMT
expires: Wed, 27 Sep 2023 06:44:46 GMT
cache-control: public, max-age=31536000
age: 319
last-modified: Thu, 21 Apr 2022 17:09:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/charmonman/v18/MjQDmiR3vP_nuxDv47jiaJiivYdh.woff2

142.250.74.163

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/charmonman/v18/MjQDmiR3vP_nuxDv47jiaJiivYdh.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14392, version 1.0\012- data
Size
14 kB (14392 bytes)
Hash
cf530312d1ecd64edb391559a68990a9
3ad2efb6c71b50da28472e6e75259f640581b786
65ce21c9df22f6324af6d504636e159eda358ac48aeff367a7aba7ce6f03bfe0

HTTP Headers

GET /s/charmonman/v18/MjQDmiR3vP_nuxDv47jiaJiivYdh.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14392
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 13:18:06 GMT
expires: Sun, 24 Sep 2023 13:18:06 GMT
cache-control: public, max-age=31536000
age: 235919
last-modified: Thu, 21 Apr 2022 17:07:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 18:53:39 GMT
expires: Tue, 26 Sep 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 42986
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 472557
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size
12 kB (11824 bytes)
Hash
deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:50:35 GMT
expires: Thu, 21 Sep 2023 19:50:35 GMT
cache-control: public, max-age=31536000
age: 471570
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotomono/v22/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_ROW4.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/robotomono/v22/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_ROW4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12312, version 1.0\012- data
Size
12 kB (12312 bytes)
Hash
15d3370712cc87aee4d35ba16e639e42
2fd44d7078073a47d4ab29418e1909b306367033
7295944e0067d71c5d5276d397dc0299afb519f277ba644aec0b96343e4185d1

HTTP Headers

GET /s/robotomono/v22/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_ROW4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12312
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:36:43 GMT
expires: Fri, 22 Sep 2023 06:36:43 GMT
cache-control: public, max-age=31536000
age: 432802
last-modified: Mon, 11 Jul 2022 18:56:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_UBFJg.woff2

142.250.74.163

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_UBFJg.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17984, version 1.0\012- data
Size
18 kB (17984 bytes)
Hash
7340c55adee137d3f8c04e106cd6dd07
b1c361f0258c70d324f969053af3782ec62de94c
aff8f7c899206dab89dabc90ab271da5f8b58d249a43e53c0f83ae0922c6b60b

HTTP Headers

GET /s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_UBFJg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 10:45:23 GMT
expires: Thu, 21 Sep 2023 10:45:23 GMT
cache-control: public, max-age=31536000
age: 504282
last-modified: Tue, 19 Apr 2022 18:45:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 472557
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_U5FJl4q.woff2

142.250.74.163

200 OK

9.5 kB

URL HTTP/2
fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_U5FJl4q.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 9532, version 1.0\012- data
Size
9.5 kB (9532 bytes)
Hash
d986adc340201b9cbb4cc9d80c9e7a25
01efa595480d3a7bf7703f440144d327d2d53e93
75770246a6b917777f7d0a415f68058b823d244f8cf1ce76c37e48804bac9e02

HTTP Headers

GET /s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_U5FJl4q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 09:53:45 GMT
expires: Fri, 22 Sep 2023 09:53:45 GMT
cache-control: public, max-age=31536000
age: 420980
last-modified: Tue, 19 Apr 2022 18:44:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.9.6

202.92.7.191

200 OK

12 kB

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.9.6
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
data
Size
12 kB (11872 bytes)
Hash
87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/js/libs/jquery.smartmenus.min.js?ver=1.9.6 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:16 GMT
etag: "5fe4-5ffd1be8-b840b1c;br"
last-modified: Tue, 12 Jan 2021 03:47:52 GMT
content-type: application/x-javascript
content-length: 6772
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_U9FJl4q.woff2

142.250.74.163

200 OK

6.6 kB

URL HTTP/2
fonts.gstatic.com/s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_U9FJl4q.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6640, version 1.0\012- data
Size
6.6 kB (6640 bytes)
Hash
20da8b2c3cd75b4bae04bcc5598d4007
6df003ea25fb8ba147ef11b75596755a29315e3c
dfd207b79982ca2a12729795ffcf19fe764fb9a09169662738139ad794ce3303

HTTP Headers

GET /s/bevietnam/v10/FBVwdDflz-iPfoPuIC2iKnkD_U9FJl4q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6640
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 07:39:18 GMT
expires: Mon, 25 Sep 2023 07:39:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:27:22 GMT
content-type: font/woff2
age: 169847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotomono/v22/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_SuW4Ep0.woff2

142.250.74.163

200 OK

8.6 kB

URL HTTP/2
fonts.gstatic.com/s/robotomono/v22/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_SuW4Ep0.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8588, version 1.0\012- data
Size
8.6 kB (8588 bytes)
Hash
dc56a2577d7c3b0e13e28c44a0d4840c
282c52086a7d5781a600db2f6bb344489fc7e37c
820adbd147a74a804a99d175490b037459de9272f39599ac11def31929db3e3a

HTTP Headers

GET /s/robotomono/v22/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_SuW4Ep0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newlandred.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 17:16:26 GMT
expires: Fri, 22 Sep 2023 17:16:26 GMT
cache-control: public, max-age=31536000
age: 394419
last-modified: Mon, 11 Jul 2022 18:55:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

source.wpopal.com/rehomes/wp-content/uploads/2019/10/footer_bkg_1.jpg

104.21.90.71

200 OK

111 kB

URL HTTP/1.1
source.wpopal.com/rehomes/wp-content/uploads/2019/10/footer_bkg_1.jpg
IP
104.21.90.71:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x520, components 3\012- data
Size
111 kB (111193 bytes)
Hash
e06ad0aa99d01ed4aa9ade7167a048d8
46c6dc508ea0231af6d85e8dc01a0501e4e17936
fb8d4d420366156ccd543be2d8afb49d1636982416f4b7a688064b788b68d5f6

HTTP Headers

GET /rehomes/wp-content/uploads/2019/10/footer_bkg_1.jpg HTTP/1.1
Host: source.wpopal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 06:50:05 GMT
Content-Type: image/jpeg
Content-Length: 111193
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 02:15:54 GMT
ETag: "631fe7da-1b259"
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5SAntO6SB82dkqlZ6bjbC4UpUcEyZUrtQ6cGStbf1RKtBti6dbqTWpcHPosWIfiSE9UAUzWbUr8Ewn1oI839ITmKwsWCJB%2BbSksIb%2F2xtlmxeRt7JTyNVqZfh%2BaAJrkcZ75Eqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75124d98c945b500-OSL
alt-svc: h2=":443"; ma=60

newlandred.com/wp-content/themes/rehomes/assets/fonts/opal-icon.woff2

202.92.7.191

200 OK

13 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/fonts/opal-icon.woff2
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Web Open Font Format (Version 2), TrueType, length 13388, version 1.0\012- data
Size
13 kB (13388 bytes)
Hash
8aa91e1c407df2f114c8908171807a6f
c0c6beb5d9e80403980c976cac6f42b7702476ce
1981b72d3f7e7b0a8c0188e77f79dae24395856026e9b817327f3230aa3f096c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/rehomes/assets/fonts/opal-icon.woff2 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://newlandred.com/wp-content/themes/rehomes/assets/css/opal-icons.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "344c-5f4775a0-28693ab;;;"
last-modified: Thu, 27 Aug 2020 08:58:08 GMT
content-type: font/woff2
content-length: 13388
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/themes/rehomes/assets/fonts/fontawesome-webfont.woff?v=4.7.0

202.92.7.191

200 OK

98 kB

URL HTTP/2
newlandred.com/wp-content/themes/rehomes/assets/fonts/fontawesome-webfont.woff?v=4.7.0
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Size
98 kB (98024 bytes)
Hash
fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07

HTTP Headers

GET /wp-content/themes/rehomes/assets/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://newlandred.com/wp-content/themes/rehomes/assets/css/opal-icons.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
etag: "17ee8-5f4775a0-2869397;;;"
last-modified: Thu, 27 Aug 2020 08:58:08 GMT
content-type: application/font-woff
content-length: 98024
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

source.wpopal.com/rehomes/wp-content/uploads/2019/10/bg1-h1.jpg

104.21.90.71

200 OK

25 kB

URL HTTP/1.1
source.wpopal.com/rehomes/wp-content/uploads/2019/10/bg1-h1.jpg
IP
104.21.90.71:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x769, components 3\012- data
Size
25 kB (25329 bytes)
Hash
4428d1333cd85e6eac07e0236e548de5
485e24448931d7d19ab41522516e2ef9c73674f2
a4c3c7ee92be697d4728c99fffedf51e704a50849d3ec57d5ba7bd41f5f4ec23

HTTP Headers

GET /rehomes/wp-content/uploads/2019/10/bg1-h1.jpg HTTP/1.1
Host: source.wpopal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 06:50:05 GMT
Content-Type: image/jpeg
Content-Length: 25329
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 02:15:54 GMT
ETag: "631fe7da-62f1"
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0KlgAcma15Wbx5q438kIvF06wujtMLuBP7bmXauSiJ5rCX14qqXsmTuw%2Ft9BAcDDm%2FU6gVHocOc5hq6YYuqGUCigO7NI%2Fl%2FlEE47ZCmKg%2BsdT5FNczUoiPvzNm1e8e2QDT3lQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75124d98cda51bfa-OSL
alt-svc: h2=":443"; ma=60

newlandred.com/wp-content/uploads/2021/01/bg-setion.jpg

202.92.7.191

200 OK

11 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2021/01/bg-setion.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=650, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1620], progressive, precision 8, 1620x650, components 3\012- data
Size
11 kB (10957 bytes)
Hash
c92cab20643c1e19a2d008ba9de51f62
5799b1c0e51d4a610524d26a306ef2a506e8c266
37f1925a08b7a34726351b4bb96054599e0f5e2d8fb3aa0fdd4cd371acd3f36c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/bg-setion.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/wp-content/uploads/elementor/css/post-76.css?ver=1611069311
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "2acd-5ffe9cd6-68c580c;;;"
last-modified: Wed, 13 Jan 2021 07:10:14 GMT
content-type: image/jpeg
content-length: 10957
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/11/project_1.jpg

202.92.7.191

200 OK

192 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/11/project_1.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 858x690, components 3\012- data
Size
192 kB (192268 bytes)
Hash
4b6b7dd1f283f12bf17255fe923f251d
a64eb1ffb3acc095fe039e35607ad69c59675c9d
bee5824fc574c2d25293bba301c4aef3f39f55c24ca974c37273f6b1bd14f6b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/11/project_1.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "2ef0c-5fdc1b70-48302cb;;;"
last-modified: Fri, 18 Dec 2020 03:01:04 GMT
content-type: image/jpeg
content-length: 192268
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/11/project_2.jpg

202.92.7.191

200 OK

217 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/11/project_2.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 858x690, components 3\012- data
Size
217 kB (217416 bytes)
Hash
e473343c991fb725dda67b833f992507
b5aa2fde3069eb8272280705d8f9a796f4012557
645dd85bd5304dcefde4e25761bd2e79ac77f99b8f79589edb94e11322b4c68b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/11/project_2.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "35148-5fdc1b74-4830330;;;"
last-modified: Fri, 18 Dec 2020 03:01:08 GMT
content-type: image/jpeg
content-length: 217416
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/elementor/thumbs/project_3-p0116v4yupx3ppqflybavk4wnf7jma00kcmek9hcug.jpg

202.92.7.191

200 OK

58 kB

URL HTTP/2
newlandred.com/wp-content/uploads/elementor/thumbs/project_3-p0116v4yupx3ppqflybavk4wnf7jma00kcmek9hcug.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 410x660, components 3\012- data
Size
58 kB (57609 bytes)
Hash
7a377f335068cb35cc9a2b085c120813
0f6d377f6a04fb77e0758fafc531fd92dc43e0bb
c0b427aec0dda1172a81c7245f1e0d609afdd083bd32b14602b9033cad016435

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/project_3-p0116v4yupx3ppqflybavk4wnf7jma00kcmek9hcug.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "e109-5ffe9e74-8055ee7;;;"
last-modified: Wed, 13 Jan 2021 07:17:08 GMT
content-type: image/jpeg
content-length: 57609
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/11/project_4.jpg

202.92.7.191

200 OK

147 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/11/project_4.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 858x690, components 3\012- data
Size
147 kB (146978 bytes)
Hash
2145222da8d6a8f2757b33e36cafd2ba
26363f381abc6e4f560d795f146d063b0db5b6ad
1dcf63ccfa482bce2eae7c082f766171120628b222102ab2703caab43c641ae7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/11/project_4.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "23e22-5fdc1b78-4830340;;;"
last-modified: Fri, 18 Dec 2020 03:01:12 GMT
content-type: image/jpeg
content-length: 146978
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/11/project_5.jpg

202.92.7.191

200 OK

166 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/11/project_5.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 858x690, components 3\012- data
Size
166 kB (165627 bytes)
Hash
ab416b7189d8f11268ec68d22b7f8f09
66be94789775b50049d2b6d9a4e4435ac6c0825c
540e31cf54303bd996c77a944e068bfd4f059543618a1e34f4cae5b35f42c487

HTTP Headers

GET /wp-content/uploads/2019/11/project_5.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "286fb-5fdc1b7a-4830348;;;"
last-modified: Fri, 18 Dec 2020 03:01:14 GMT
content-type: image/jpeg
content-length: 165627
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/fonts/pe-icon-7-stroke/fonts/Pe-icon-7-stroke.woff?d7yf1v

202.92.7.191

200 OK

59 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/fonts/pe-icon-7-stroke/fonts/Pe-icon-7-stroke.woff?d7yf1v
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Web Open Font Format, TrueType, length 58556, version 1.0\012- data
Size
59 kB (58556 bytes)
Hash
b38ef310874bdd008ac14ef3db939032
7e544bb11b7655998db6f324c612f7ffbf0ab66e
6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/pe-icon-7-stroke/fonts/Pe-icon-7-stroke.woff?d7yf1v HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://newlandred.com/wp-content/plugins/revslider/public/assets/fonts/pe-icon-7-stroke/css/pe-icon-7-stroke.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
etag: "e4bc-5dea1416-58c9c81;;;"
last-modified: Fri, 06 Dec 2019 08:40:54 GMT
content-type: application/font-woff
content-length: 58556
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

202.92.7.191

200 OK

77 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://newlandred.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "12d68-5dea1414-38c7242;;;"
last-modified: Fri, 06 Dec 2019 08:40:52 GMT
content-type: font/woff2
content-length: 77160
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2021/01/logo.png

202.92.7.191

200 OK

18 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2021/01/logo.png
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
PNG image data, 200 x 165, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17632 bytes)
Hash
d0b898fc2e0982cf407caad03abd10e5
6fa64a5331a9bcda146efef192268a771f0c7a59
89b03d91f28ccaf919b93ad21c520f88a596aec45b3693fc9bd3d56a4e21b3f7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/logo.png HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "44e0-5fee9ac2-689bb14;;;"
last-modified: Fri, 01 Jan 2021 03:45:06 GMT
content-type: image/png
content-length: 17632
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/10/image1-h1.jpg

202.92.7.191

200 OK

112 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/10/image1-h1.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 725x530, components 3\012- data
Size
112 kB (112235 bytes)
Hash
73fa3bd75cd1b76cdbea4b3bbe7f70a5
45e20a4c6a8b13bbac95343d281face16aded4b7
dd3dc926c77505d8c29190f8b6a4d6aaf022cb5baf0d8af3572fa20413d45b1e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/10/image1-h1.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "1b66b-5fdc1af6-403f35c;;;"
last-modified: Fri, 18 Dec 2020 02:59:02 GMT
content-type: image/jpeg
content-length: 112235
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/10/development_1.png

202.92.7.191

200 OK

6.0 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/10/development_1.png
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
PNG image data, 200 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size
6.0 kB (5992 bytes)
Hash
7a885f6e923e3acae0516177569003eb
30bdd024d937895f8f3ca018229872585dcc8fd7
58cba4ac6de16c46854bd4e4d0e0f322481bacf5314c204e61417aa805547532

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/10/development_1.png HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "1768-5fdc1b04-403f311;;;"
last-modified: Fri, 18 Dec 2020 02:59:16 GMT
content-type: image/png
content-length: 5992
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/10/development_2.png

202.92.7.191

200 OK

6.1 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/10/development_2.png
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
PNG image data, 200 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size
6.1 kB (6090 bytes)
Hash
6f3a67f613ca65fb67205bd29e9132ad
71a75b025cbbc23b8b8d0fe7417c67aa9f630d9e
4a58a0f57acc29b7a0134363c12136c1c06e9204ded645c39d1987dae9cf6aa8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/10/development_2.png HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "17ca-5fdc1b04-403f313;;;"
last-modified: Fri, 18 Dec 2020 02:59:16 GMT
content-type: image/png
content-length: 6090
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2019/10/investor.png

202.92.7.191

200 OK

6.9 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2019/10/investor.png
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
PNG image data, 200 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size
6.9 kB (6855 bytes)
Hash
380428595f5fd45e0198044b6ef4c13f
c7f0785942364276192ccaa7c2b7cd891c0850f2
99ede3775c899082a80a9e42ddb372f3520ff602c8ae531fd1ff60553998ee0e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/10/investor.png HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:17 GMT
etag: "1ac7-5fdc1b04-403f37d;;;"
last-modified: Fri, 18 Dec 2020 02:59:16 GMT
content-type: image/png
content-length: 6855
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/favicon.ico

202.92.7.191

200 OK

734 B

URL HTTP/2
newlandred.com/favicon.ico
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
734 B (734 bytes)
Hash
b109ec15a6fc9ba0e09b7cb1c1faef6b
da7723e83dde1db7d1214a27d701bcbd230a9a9e
482d11981b1c51f2fb7cbc976adb70c7b844df05e6dcf882577043e098758cdb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:18 GMT
etag: "47e-5fe84cce-10bdc26;br"
last-modified: Sun, 27 Dec 2020 08:58:54 GMT
content-type: image/x-icon
content-length: 734
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:18 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/revslider/public/assets/assets/loader.gif

202.92.7.191

200 OK

2.5 kB

URL HTTP/2
newlandred.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
GIF image data, version 89a, 24 x 24\012- data
Size
2.5 kB (2545 bytes)
Hash
4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:18 GMT
etag: "9f1-5dea13c4-403e590;;;"
last-modified: Fri, 06 Dec 2019 08:39:32 GMT
content-type: image/gif
content-length: 2545
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:18 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

newlandred.com/wp-content/uploads/2021/01/The_Signature_3.jpg

202.92.7.191

200 OK

352 kB

URL HTTP/2
newlandred.com/wp-content/uploads/2021/01/The_Signature_3.jpg
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2021:01:11 16:41:02], progressive, precision 8, 1917x978, components 3\012- data
Size
352 kB (351929 bytes)
Hash
e63018bc36f9b20d586889a2e547d016
6c20039d1c8ce8d5e2cabf8f25a063edbc2c31cd
da5022ce684fa22338794c0528686bf55a78a015a6e9d7118fa9e3a2dd8fdecd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/The_Signature_3.jpg HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 06:49:18 GMT
etag: "55eb9-5ffc1d67-6801dc8;;;"
last-modified: Mon, 11 Jan 2021 09:41:59 GMT
content-type: image/jpeg
content-length: 351929
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:49:18 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5142 bytes)
Hash
e56f576ce4c320252cd028a38a1e4bde
8fbe2856a3e05ae7c45f4e35944d2835d47e4284
dc5783e5d50e89d2b9c72dea55751a64157dbc9ec9be85383a6df10b5ec1a602

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5142
x-amzn-requestid: 5b86b092-ff60-476c-855a-d32d5f10f115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yvz1CGInoAMF0Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296686-79e9a4cb75289e1b0785d4fc;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:06:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7k1682yCSjI5mtQhFZ8S1eSMo2qYEd7HF2T58X3cbCV2112QE46zXQ==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:33 GMT
age: 32438
etag: "8fbe2856a3e05ae7c45f4e35944d2835d47e4284"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

newlandred.com/

202.92.7.191

200 OK

0 B

URL HTTP/2
newlandred.com/
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://newlandred.com/wp-json/>; rel="https://api.w.org/", <https://newlandred.com/wp-json/wp/v2/pages/76>; rel="alternate"; type="application/json", <https://newlandred.com/>; rel=shortlink
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Be+Vietnam%3A300%7CRoboto+Mono%3A400%7CBe+Vietnam%3A700%7CBe+Vietnam%3A400&subset=latin-ext%2Clatin-ext%2Clatin-ext%2Clatin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Be+Vietnam%3A300%7CRoboto+Mono%3A400%7CBe+Vietnam%3A700%7CBe+Vietnam%3A400&subset=latin-ext%2Clatin-ext%2Clatin-ext%2Clatin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Be+Vietnam%3A300%7CRoboto+Mono%3A400%7CBe+Vietnam%3A700%7CBe+Vietnam%3A400&subset=latin-ext%2Clatin-ext%2Clatin-ext%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 06:50:04 GMT
date: Tue, 27 Sep 2022 06:50:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

newlandred.com/wp-content/plugins/rehomes-core/assets/css/elementor/assets/images/mailchimp_arrow.png

202.92.7.191

404 Not Found

0 B

URL HTTP/2
newlandred.com/wp-content/plugins/rehomes-core/assets/css/elementor/assets/images/mailchimp_arrow.png
IP
202.92.7.191:0
ASN
#45899 VNPT Corp

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/rehomes-core/assets/css/elementor/assets/images/mailchimp_arrow.png HTTP/1.1
Host: newlandred.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://newlandred.com/wp-content/plugins/rehomes-core/assets/css/elementor/style.css?ver=1.9.6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://newlandred.com/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:49:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML