| cdnjs.cloudflare.com/ajax/libs/flexslider/2.7.1/flexslider.min.css | 104.17.25.14 | 200 OK | 1.0 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/flexslider/2.7.1/flexslider.min.css IP104.17.25.14:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (4397) Hashb075718f7c74ffbe333d5331df78737b 47b2aadfe57c246bce294d10ce20ad0d3918cd07 8b1e0d122c84c5fd28f60d8529a3929a2fbecb736ec1b44b88bdc0870f885fcb
GET /ajax/libs/flexslider/2.7.1/flexslider.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: text/css; charset=utf-8
content-length: 1027
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5e-115c"
last-modified: Mon, 04 May 2020 16:10:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 736383
expires: Mon, 14 Apr 2025 04:58:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bmPLu4Z0zQgsoCMCNMg8GLotIIWecXan6BpavHhPm2c%2Bn5yaIMiBvfkGg4sQ%2BPTjHdnlf50vBI%2BFyJ4qfl%2FN6Ejfgz9eiSKaHMtQv7CsYnavPASXk1wtEnep5RysF%2BoKHsDBfuD1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87938483aaa256c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/assets/hardcore/js/main.js | 188.42.224.102 | 200 OK | 479 B |
URL GET HTTP/2getnewsfirst.com/assets/hardcore/js/main.js IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typeJavaScript source, ASCII text Hash2d961d8cd2831571b5a8df5e43a758cb fcb37995cf2ab685f89d1dc5d99a6cae572575ec 33ad4022d4c133876c016dbd5994939e917c91a1274db4761eef19231fcc8d0d
GET /assets/hardcore/js/main.js HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 479
last-modified: Fri, 12 Mar 2021 11:11:23 GMT
etag: "604b4c5b-1df"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/flexslider/2.7.1/jquery.flexslider.min.js | 104.17.25.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/flexslider/2.7.1/jquery.flexslider.min.js IP104.17.25.14:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (22853), with no line terminators Hashf2bf3c9a4484d5e6644e663ba4300271 331bf06833963ca8df4b5404506496f4bda51995 aa69716e5e0567294f2e816b4bb27a56bb3d5a7813f3ba309344a340f13e5953
GET /ajax/libs/flexslider/2.7.1/jquery.flexslider.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 5784
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5e-5945"
last-modified: Mon, 04 May 2020 16:10:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1041439
expires: Mon, 14 Apr 2025 04:58:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=34bwnzOWTq1HG2WFXKZyYZGXWoJUmtukCTtXCkunOSBe1FSYlEhBgqNbN18IGDFwyJSjfN0t09OGLkVTSv7XU%2FHHDfBQnG%2BdenMAVP8tVFrYtsdHRXsQz9E3ixqMf5Z9Pw2z7pZs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87938483ead056c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-111647716-28 | 142.250.74.168 | 200 OK | 74 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-111647716-28 IP142.250.74.168:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash1ccdfc7c8fcef706740420a6c71df557 8d2941ce47669877379b4b455e0a476d3ff4dc62 70c8301d945541e47ba02426fe829e6143462cbf9ad3814f9dbd6763e86bb793
GET /gtag/js?id=UA-111647716-28 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 04:58:20 GMT
expires: Wed, 24 Apr 2024 04:58:20 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73483
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.2.1.slim.min.js | 151.101.130.137 | 200 OK | 24 kB |
URL GET HTTP/2code.jquery.com/jquery-3.2.1.slim.min.js IP151.101.130.137:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32012) Hash5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:58:20 GMT
age: 1404834
x-served-by: cache-lga21963-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 40, 888
x-timer: S1713934700.250274,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2
|
|
| news.viralstrangers.com/ajs.php?zoneid=1688758&block_count=3&target_element=pa_native_1688758 | 139.45.195.9 | 200 OK | 8 B |
URL GET HTTP/2news.viralstrangers.com/ajs.php?zoneid=1688758&block_count=3&target_element=pa_native_1688758 IP139.45.195.9:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectviralstrangers.com FingerprintD0:40:A9:77:BC:11:3E:25:88:25:65:6F:46:53:08:A6:FB:46:61:C5 ValidityMon, 04 Mar 2024 00:43:28 GMT - Sun, 02 Jun 2024 00:43:27 GMT
File typeASCII text, with no line terminators Hash3bbbac058fc4ed9e8078f0318d31d9fa fb3f78865eac1bdd3406f00b9cae5c6cdf6211b8 3938c63e8b782001c4b451b439634c1380b1e262d919e11ba7374862835d83e4
GET /ajs.php?zoneid=1688758&block_count=3&target_element=pa_native_1688758 HTTP/1.1
Host: news.viralstrangers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/octet-stream
content-length: 8
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/1529485697_5b2a1981f23ab.png | 104.22.25.116 | 200 OK | 21 kB |
URL GET HTTP/2news.littlecdn.com/1529485697_5b2a1981f23ab.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 250 x 100, 8-bit/color RGBA, non-interlaced Hashab8842636abe89fc53070d1c830a16d6 9db432674d432285e9eead4ced628b2d49edec7f d7ac4e32c339afd3f7f5a6216688811fb41d01f694b40c49b8b9bc385a28a153
GET /1529485697_5b2a1981f23ab.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/octet-stream
content-length: 20965
last-modified: Wed, 20 Jun 2018 09:08:19 GMT
etag: "ab8842636abe89fc53070d1c830a16d6"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d4a569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/177x99/1564997282_5d47f6a2c0d28.jpeg | 104.22.25.116 | 200 OK | 4.3 kB |
URL GET HTTP/2news.littlecdn.com/177x99/1564997282_5d47f6a2c0d28.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 148x99, components 3 Hash0a2d5b0d09a1d599a5d13f2a1990a5a5 58839ece4c92958e0d4e6b8eff26895fe3d02ed1 6e8f0ae7224c85dfa026e9db975e0e77211e841d4cc0fc8f1fd07dd38f774703
GET /177x99/1564997282_5d47f6a2c0d28.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 4339
last-modified: Mon, 05 Aug 2019 09:28:03 GMT
etag: W/"3d243a384b79a15bea09fc5c5df3cf97"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d42569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/100x60/1567505006_5d6e3a6eea9a31.27425008.jpeg | 104.22.25.116 | 200 OK | 2.1 kB |
URL GET HTTP/2news.littlecdn.com/100x60/1567505006_5d6e3a6eea9a31.27425008.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 89x60, components 3 Hashe9a693bc613a58746b458808d7fbc392 46089579e6db4ea2af7a457282342b3272855472 6d8476f6a1b9ac795c353db7e6b8f850502331952fa8f84a98b72b5887fa21dd
GET /100x60/1567505006_5d6e3a6eea9a31.27425008.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 2098
last-modified: Tue, 03 Sep 2019 10:03:28 GMT
etag: W/"cbe2ac12417b41fd61d0fa190efb10dd"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d3f569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/177x99/1567504997_5d6e3a65dc50a1.17555257.jpeg | 104.22.25.116 | 200 OK | 4.1 kB |
URL GET HTTP/2news.littlecdn.com/177x99/1567504997_5d6e3a65dc50a1.17555257.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 156x99, components 3 Hash688e88b40ef0047e5bd158853cd8ba63 224585ffcb4dbbfbcaf2327c4e89c57785115f66 934936fe4aaf6a7a6b275b62f6c0185dd9d21dbdaa99a18a26017edd91cb1dca
GET /177x99/1567504997_5d6e3a65dc50a1.17555257.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 4058
last-modified: Tue, 03 Sep 2019 10:03:19 GMT
etag: W/"113fabe4b5881316780003c1b3b9e3a9"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d4b569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/100x60/1567505010_5d6e3a729f1eb6.77189433.png | 104.22.25.116 | 200 OK | 1.3 kB |
URL GET HTTP/2news.littlecdn.com/100x60/1567505010_5d6e3a729f1eb6.77189433.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 100 x 52, 8-bit/color RGBA, non-interlaced Hash8dd02323b9d9307b670edc5de23c0e6d 602d9f409ccb9f13c7566b3f86d3cbe1b117c608 081ad3ff039dda26dcba68eb1155e0eb0680e1bfb470d8b70c36120fd8086fc7
GET /100x60/1567505010_5d6e3a729f1eb6.77189433.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/png
content-length: 1326
last-modified: Tue, 03 Sep 2019 10:03:31 GMT
etag: W/"8325af14cbdaf2bf91096cbe84ff0474"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d3e569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564974182_5d479c6682224.jpeg | 104.22.25.116 | 200 OK | 23 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564974182_5d479c6682224.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 540x360, components 3 Hash396cb09c8f02d449af71cf11c045f4bd 573854dc3c86facd283904ed52897be552005e28 62c0547409cfffa543d019c17db241d2fd606e20335156dbd1ee758c3668c6b8
GET /600x360/1564974182_5d479c6682224.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 22720
last-modified: Mon, 05 Aug 2019 03:03:03 GMT
etag: W/"193e96d0bee890140b8bb6b1eea643b0"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d3a569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1567505006_5d6e3a6eea9a31.27425008.jpeg | 104.22.25.116 | 200 OK | 31 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1567505006_5d6e3a6eea9a31.27425008.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 532x360, components 3 Hash18a0a0dd702fd144066e45caaf13d075 82797062cf5038da2e7e669fa0247649d96730f1 e4daf7b046eaa91518588e84eb3543b11afa65d0bd7856685e0e7e4a72f08bb4
GET /600x360/1567505006_5d6e3a6eea9a31.27425008.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 30665
last-modified: Tue, 03 Sep 2019 10:03:28 GMT
etag: W/"cbe2ac12417b41fd61d0fa190efb10dd"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d4e569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564997282_5d47f6a2c0d28.jpeg | 104.22.25.116 | 200 OK | 26 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564997282_5d47f6a2c0d28.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 538x360, components 3 Hashcf0d9fa61e6037e86af8489d055cb222 e160a07ed0e97e907d26945f0f699e818b2d8701 dafaf24788f3080ee3f7c4539ba4d5b4885eba26c45fbe08f5b77d582ff4080c
GET /600x360/1564997282_5d47f6a2c0d28.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 26549
last-modified: Mon, 05 Aug 2019 09:28:03 GMT
etag: W/"3d243a384b79a15bea09fc5c5df3cf97"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d29569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/177x99/1564994702_5d47ec8e74008.jpeg | 104.22.25.116 | 200 OK | 4.0 kB |
URL GET HTTP/2news.littlecdn.com/177x99/1564994702_5d47ec8e74008.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 149x99, components 3 Hash60e7667a6c88dd2218d86d28e3f572aa cbad7caa2d43542cfb0f82cd613a61073dec2717 1b469a6fd35c4356787801a8f7a2758d1eca62f29cb87b6cd852183e63e2c919
GET /177x99/1564994702_5d47ec8e74008.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 4012
last-modified: Mon, 05 Aug 2019 08:45:03 GMT
etag: W/"40a697625d9467670d74802a7677f151"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d44569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/177x99/1564993383_5d47e76783517.jpeg | 104.22.25.116 | 200 OK | 2.3 kB |
URL GET HTTP/2news.littlecdn.com/177x99/1564993383_5d47e76783517.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 148x99, components 3 Hash420223fd12cd5959323a15500237bdcf ee84da4b4ced7148cb6e98ee7af7e86030d11b58 7a612f8f45fd4fcfcd27ed7588e6852575f4f85540653b959faa6407a3e696c5
GET /177x99/1564993383_5d47e76783517.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 2267
last-modified: Mon, 05 Aug 2019 08:23:04 GMT
etag: W/"8ffdeb3da8e4b50b0f70a6494b0d3f71"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d45569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/100x60/1567505014_5d6e3a769565f0.50858331.jpeg | 104.22.25.116 | 200 OK | 2.0 kB |
URL GET HTTP/2news.littlecdn.com/100x60/1567505014_5d6e3a769565f0.50858331.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 90x60, components 3 Hash82d9a427d8a7bec1c80a1dc8bb451589 909a5790372d1b0177368c56408bf49e4a186cb7 6a4db7639c4cbc49b838249433f1c63d77723a8a3ef9feb4433c232e6fb8c9a0
GET /100x60/1567505014_5d6e3a769565f0.50858331.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 1960
last-modified: Tue, 03 Sep 2019 10:03:35 GMT
etag: W/"3c2525b7e7fa794a2583450c5aef4079"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d3c569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/100x60/1567505012_5d6e3a74649595.44438282.jpeg | 104.22.25.116 | 200 OK | 2.8 kB |
URL GET HTTP/2news.littlecdn.com/100x60/1567505012_5d6e3a74649595.44438282.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 90x60, components 3 Hash89d0f1ed397102fa71bf316e73d04000 b98b13676e06a7efc6041946a9ef84dd8fe163f6 3b6b555e83ce467fe2d3cbd385c9456977027d2a646f9e25cdbc0c6ee2cbc0d3
GET /100x60/1567505012_5d6e3a74649595.44438282.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 2819
last-modified: Tue, 03 Sep 2019 10:03:33 GMT
etag: W/"9278343b32612c702bf66466f4615ced"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d3d569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564974543_5d479dcff2359.jpeg | 104.22.25.116 | 200 OK | 23 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564974543_5d479dcff2359.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 523x360, components 3 Hash95bbea0120cd1cad5d96d8615f7e05ea 23906034ca4de9f67a9570efb9e30caf09e7bbd5 20d10fa7967579a81fff0b38dae68c62bcfa6bcd6cbf16f689e9bd5edefa83bd
GET /600x360/1564974543_5d479dcff2359.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 23298
last-modified: Mon, 05 Aug 2019 03:09:05 GMT
etag: W/"6ab4c6c5d43c4ab4cd19f40c2c83f430"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d39569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564993383_5d47e76783517.jpeg | 104.22.25.116 | 200 OK | 11 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564993383_5d47e76783517.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 535x360, components 3 Hash5fbf36c69b5b74e132df3c7875de586c 6ebed6d20aa0a1ec1fe5c738f4e73921feb10d0d dd0189fc7db2278af32093239cd71a4140cd253591dd9999d4ca33a46365fd6c
GET /600x360/1564993383_5d47e76783517.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 11066
last-modified: Mon, 05 Aug 2019 08:23:04 GMT
etag: W/"8ffdeb3da8e4b50b0f70a6494b0d3f71"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d2f569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564989364_5d47d7b43259a.jpeg | 104.22.25.116 | 200 OK | 13 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564989364_5d47d7b43259a.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 483x360, components 3 Hashd0e878f783777fc909f9927f6c25cfe0 c743b02df4b1fadabd68e540917f9bab5cf6afcf a9d0057411f44330ec539a66d16cc2a448d557a857df0ad5abc6104f3864ce9e
GET /600x360/1564989364_5d47d7b43259a.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 13291
last-modified: Mon, 05 Aug 2019 07:16:05 GMT
etag: W/"cfe9644c722b7625a7dae3833afdc1b3"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d31569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1567504997_5d6e3a65dc50a1.17555257.jpeg | 104.22.25.116 | 200 OK | 22 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1567504997_5d6e3a65dc50a1.17555257.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 566x360, components 3 Hasha4c11fd4d16c993b8fb55715a563492c 870b8bd3af56962b16fb22211781fb5a01795230 72eb4c9111e5676bfe39e3a99e5740295edafb0ba9f127832bff70f5cbff82c8
GET /600x360/1567504997_5d6e3a65dc50a1.17555257.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 21622
last-modified: Tue, 03 Sep 2019 10:03:19 GMT
etag: W/"113fabe4b5881316780003c1b3b9e3a9"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d28569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564978203_5d47ac1baef59.png | 104.22.25.116 | 200 OK | 12 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564978203_5d47ac1baef59.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 600 x 315, 8-bit/color RGBA, non-interlaced Hash2adb057756897cca9c180aca33da5313 84b614046e421b038c9c1c31f1d15935c04f261e 003c750dcae7b97b7a8e235ef18d2a73d9e97328990934abdcadba421ab46ceb
GET /600x360/1564978203_5d47ac1baef59.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/png
content-length: 12113
last-modified: Mon, 05 Aug 2019 04:10:04 GMT
etag: W/"8325af14cbdaf2bf91096cbe84ff0474"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d37569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564981924_5d47baa435125.jpeg | 104.22.25.116 | 200 OK | 14 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564981924_5d47baa435125.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 540x360, components 3 Hash36a85f4571e83568efee5361dbe2c5e1 c958b689757e2addbb94fb18dc853baeaf3f38fd bd2d7a7d5479fd3b04917c4203d5fd0ab42194ace466dc6f80b56d592306f795
GET /600x360/1564981924_5d47baa435125.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 13512
last-modified: Mon, 05 Aug 2019 05:12:05 GMT
etag: W/"21ff117645067c80f55f518fa95301e7"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d36569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1567505005_5d6e3a6d28cfd8.00315677.jpeg | 104.22.25.116 | 200 OK | 21 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1567505005_5d6e3a6d28cfd8.00315677.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 541x360, components 3 Hashc43044f7a329cd35c4a6c580121a5bc6 ad647953d59c2fd03e21d92d229f39fc8bdd0c4d 41e15ab79b8174e336a0753a33940ce4aafbd700025a4b2243b48b1315ca3686
GET /600x360/1567505005_5d6e3a6d28cfd8.00315677.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 21146
last-modified: Tue, 03 Sep 2019 10:03:26 GMT
etag: W/"d37f2d8364d169378bbdee6de9165d2f"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d4f569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1567505010_5d6e3a729f1eb6.77189433.png | 104.22.25.116 | 200 OK | 12 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1567505010_5d6e3a729f1eb6.77189433.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 600 x 315, 8-bit/color RGBA, non-interlaced Hash2adb057756897cca9c180aca33da5313 84b614046e421b038c9c1c31f1d15935c04f261e 003c750dcae7b97b7a8e235ef18d2a73d9e97328990934abdcadba421ab46ceb
GET /600x360/1567505010_5d6e3a729f1eb6.77189433.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/png
content-length: 12113
last-modified: Tue, 03 Sep 2019 10:03:31 GMT
etag: W/"8325af14cbdaf2bf91096cbe84ff0474"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d4d569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1567505014_5d6e3a769565f0.50858331.jpeg | 104.22.25.116 | 200 OK | 25 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1567505014_5d6e3a769565f0.50858331.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 541x360, components 3 Hash53c4ea1ad0f60a643ab8f60578dc2893 772417cee91b8bc3d5d28fe72ecf299d7ae39a55 f8b1f9aea960da70fb3fa47fc3c2d3abfd63fca59e33a1983c28d7efa9295524
GET /600x360/1567505014_5d6e3a769565f0.50858331.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 24876
last-modified: Tue, 03 Sep 2019 10:03:35 GMT
etag: W/"3c2525b7e7fa794a2583450c5aef4079"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d47569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564994702_5d47ec8e74008.jpeg | 104.22.25.116 | 200 OK | 23 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564994702_5d47ec8e74008.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 541x360, components 3 Hash6f30f50442c4d36e221e0ba867a30352 5e08658f7ef41ba7104b4a38fb7348cd3ce9f834 45eca5348a4eb819647162578b47c438cccc5a39800f0dbdebace05475978bc1
GET /600x360/1564994702_5d47ec8e74008.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 22676
last-modified: Mon, 05 Aug 2019 08:45:03 GMT
etag: W/"40a697625d9467670d74802a7677f151"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d2e569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1567505012_5d6e3a74649595.44438282.jpeg | 104.22.25.116 | 200 OK | 41 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1567505012_5d6e3a74649595.44438282.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 540x360, components 3 Hash242bc246e9db00766abb28901f53e457 c8fb19d769c74b1b896ef1643f3afd280a7c20f6 87998bffb5f9619f937c8f791e232b8b99dd69b0d58e067c92aa05b6ed39be5a
GET /600x360/1567505012_5d6e3a74649595.44438282.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 41039
last-modified: Tue, 03 Sep 2019 10:03:33 GMT
etag: W/"9278343b32612c702bf66466f4615ced"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d4c569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/100x60/1567505005_5d6e3a6d28cfd8.00315677.jpeg | 104.22.25.116 | 200 OK | 2.1 kB |
URL GET HTTP/2news.littlecdn.com/100x60/1567505005_5d6e3a6d28cfd8.00315677.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 90x60, components 3 Hash4aadd7a88a48aa81a5e756b484706483 8eb5d780eda73f4d2f23b816ac00c186760f6f4d c378c4c32f5c6befc19af0d7ac2acc66b1f2ce27baa6d193d50c764f14d2633c
GET /100x60/1567505005_5d6e3a6d28cfd8.00315677.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 2108
last-modified: Tue, 03 Sep 2019 10:03:26 GMT
etag: W/"d37f2d8364d169378bbdee6de9165d2f"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d40569c-OSL
X-Firefox-Spdy: h2
|
|
| | 188.42.224.102 | 200 OK | 42 kB |
URL User Request GET HTTP/2IP188.42.224.102:443
CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typegzip compressed data, max speed, from Unix Hash45e0b51f2bc2bf02fba88ee7b48a03a5 a9e02bcbcd82b997141971ea54c86160e3dadd41 2b94fe4a6d3b27ca8e1a1a9ecd51b6292919dc952a774d0568a72823563a1b3a
GET / HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
date: Wed, 24 Apr 2024 04:58:19 GMT
set-cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; expires=Wed, 24-Apr-2024 06:58:19 GMT; Max-Age=7200; path=/
nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi; expires=Wed, 24-Apr-2024 06:58:19 GMT; Max-Age=7200; path=/; httponly
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564971963_5d4793bb24a57.jpeg | 104.22.25.116 | 200 OK | 40 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564971963_5d4793bb24a57.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 540x360, components 3 Hash5d940f9b5daae308ce8c8f9b7e54e730 23e92099cdfd1595f4c3528f4825c313c64abaff 24cd85f4eb98e7d5c5f075bd158b58daf9e9f004d4d5d06af1f2177cb27b97c4
GET /600x360/1564971963_5d4793bb24a57.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 40263
last-modified: Mon, 05 Aug 2019 02:26:04 GMT
etag: W/"24daa4a262ed55607ca17d5c20d8f4f7"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d3b569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/177x99/1564993082_5d47e63ac798e.jpeg | 104.22.25.116 | 200 OK | 5.6 kB |
URL GET HTTP/2news.littlecdn.com/177x99/1564993082_5d47e63ac798e.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 151x99, components 3 Hash6fff6f2f92e202ee06a8da82d1e922ef 14c85960faae53fbde137d59fe403f5bca64e7cf 80b5e5c879aaadc51313279ebe8a2b465e2e7b189d33774a507d944dd0a1d599
GET /177x99/1564993082_5d47e63ac798e.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 5638
last-modified: Mon, 05 Aug 2019 08:18:03 GMT
etag: W/"10e417627eaed26b0ddae347c2dbc460"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d46569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564986604_5d47ccecc3a18.jpeg | 104.22.25.116 | 200 OK | 25 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564986604_5d47ccecc3a18.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 562x360, components 3 Hashf0af830398449a07e4a75ad3bc684b14 b5ec74f507371f758bdf31e59f60bcf3fdd545bd 0896fc768018e14b3fbad10f00c8cb0ff3a6db2573ea9d5ed32b5ff510fe9b52
GET /600x360/1564986604_5d47ccecc3a18.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 25065
last-modified: Mon, 05 Aug 2019 06:30:05 GMT
etag: W/"fe60f0aa729ec513934b78f8d91077fd"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d33569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564977303_5d47a897d71e4.png | 104.22.25.116 | 200 OK | 12 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564977303_5d47a897d71e4.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 600 x 315, 8-bit/color RGBA, non-interlaced Hash2adb057756897cca9c180aca33da5313 84b614046e421b038c9c1c31f1d15935c04f261e 003c750dcae7b97b7a8e235ef18d2a73d9e97328990934abdcadba421ab46ceb
GET /600x360/1564977303_5d47a897d71e4.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/png
content-length: 12113
last-modified: Mon, 05 Aug 2019 03:55:05 GMT
etag: W/"8325af14cbdaf2bf91096cbe84ff0474"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d38569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564988583_5d47d4a734d58.jpeg | 104.22.25.116 | 200 OK | 31 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564988583_5d47d4a734d58.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 540x360, components 3 Hash1a298a630085378ed4d7eb1786d2ef18 538e6bc4c4f5dec6115d5aca58b6d7fbfda2a595 47e3693cfed8ac95e5850bca3a8d7f6f49271f4d8d3e58a8f93ba06962127f75
GET /600x360/1564988583_5d47d4a734d58.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 31196
last-modified: Mon, 05 Aug 2019 07:03:04 GMT
etag: W/"270295ddff0d809e299faaaf331f668f"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d32569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564993082_5d47e63ac798e.jpeg | 104.22.25.116 | 200 OK | 53 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564993082_5d47e63ac798e.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 546x360, components 3 Hash8ea97e0741d486b5a35f8c363aa17edf 824dea0bb81509f0bba0a12329eb52356e584bc2 874dfe232f5824912b474db678d41b7dc67627235cbe65e8781b85040ee61097
GET /600x360/1564993082_5d47e63ac798e.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 52895
last-modified: Mon, 05 Aug 2019 08:18:03 GMT
etag: W/"10e417627eaed26b0ddae347c2dbc460"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d30569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/600x360/1564996744_5d47f488143de.jpeg | 104.22.25.116 | 200 OK | 53 kB |
URL GET HTTP/2news.littlecdn.com/600x360/1564996744_5d47f488143de.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 546x360, components 3 Hash8ea97e0741d486b5a35f8c363aa17edf 824dea0bb81509f0bba0a12329eb52356e584bc2 874dfe232f5824912b474db678d41b7dc67627235cbe65e8781b85040ee61097
GET /600x360/1564996744_5d47f488143de.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 52895
last-modified: Mon, 05 Aug 2019 09:19:05 GMT
etag: W/"10e417627eaed26b0ddae347c2dbc460"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384845d2b569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/407x460/1567504997_5d6e3a65dc50a1.17555257.jpeg | 104.22.25.116 | 200 OK | 14 kB |
URL GET HTTP/2news.littlecdn.com/407x460/1567504997_5d6e3a65dc50a1.17555257.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 407x258, components 3 Hash6138d2a3a017be7667ead754d2f832d6 5dbd31f396264605a0ae9d5d6646157927d11ae3 bafb67560f0ef64375e8e1f7e4c121b40465a1b1d6b29c4d5a3e00376dbcd07b
GET /407x460/1567504997_5d6e3a65dc50a1.17555257.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 13780
last-modified: Tue, 03 Sep 2019 10:03:19 GMT
etag: W/"113fabe4b5881316780003c1b3b9e3a9"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384866e7b569c-OSL
X-Firefox-Spdy: h2
|
|
| news.breakingfeedz.com/notice.php?p=1611788&interstitial=1 | 139.45.197.239 | 200 OK | 8 B |
URL GET HTTP/2news.breakingfeedz.com/notice.php?p=1611788&interstitial=1 IP139.45.197.239:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectbreakingfeedz.com FingerprintCC:BC:60:09:73:E8:F1:BA:22:01:11:CC:D9:45:AF:0D:27:FA:E3:10 ValidityTue, 19 Mar 2024 19:28:55 GMT - Mon, 17 Jun 2024 19:28:54 GMT
File typeASCII text, with no line terminators Hash3bbbac058fc4ed9e8078f0318d31d9fa fb3f78865eac1bdd3406f00b9cae5c6cdf6211b8 3938c63e8b782001c4b451b439634c1380b1e262d919e11ba7374862835d83e4
GET /notice.php?p=1611788&interstitial=1 HTTP/1.1
Host: news.breakingfeedz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/octet-stream
content-length: 8
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/407x460/1564997282_5d47f6a2c0d28.jpeg | 104.22.25.116 | 200 OK | 18 kB |
URL GET HTTP/2news.littlecdn.com/407x460/1564997282_5d47f6a2c0d28.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 407x272, components 3 Hashf80787d1c6e0d379fad2390a9fad7ee2 6a9d2a84d52b375b81a2df18a3b3df73d9777e29 42affd0468cd2447404c882622ec5276e38ca55e0511282bc7d48dfa5992b37d
GET /407x460/1564997282_5d47f6a2c0d28.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 17477
last-modified: Mon, 05 Aug 2019 09:28:03 GMT
etag: W/"3d243a384b79a15bea09fc5c5df3cf97"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384866e7d569c-OSL
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-KQW398YK48&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 87 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-KQW398YK48&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash00606c424d62f7f4e85f86fb91f1a977 d48d93cd99f36ac7097807fc5c3af94cd43352d9 d6634c64dade5f4a4d419e6539c99b9f7d4b2aad152d1ca513f68bc32d86da88
GET /gtag/js?id=G-KQW398YK48&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 04:58:20 GMT
expires: Wed, 24 Apr 2024 04:58:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86981
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:01 GMT
expires: Fri, 18 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 526880
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.99:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 65509
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/rajdhani/v15/LDI2apCSOBg7S-QT7pa8FvOreec.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/rajdhani/v15/LDI2apCSOBg7S-QT7pa8FvOreec.woff2 IP142.250.74.99:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15688, version 1.0 Hashd5448938a162ccb434b09f4572c0191f be9eae3d1d9f4fbd2208e0fd3c871b17b65b6516 5b7e4a6f97163c2636724d4de90304fc895653dcfe64c67a7a22f26331ca5c5f
GET /s/rajdhani/v15/LDI2apCSOBg7S-QT7pa8FvOreec.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 20:22:43 GMT
expires: Wed, 23 Apr 2025 20:22:43 GMT
cache-control: public, max-age=31536000
age: 30938
last-modified: Wed, 27 Apr 2022 15:41:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 188.42.224.102 | 200 OK | 0 B |
URL User Request GET HTTP/2IP188.42.224.102:443
CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi; _ga_KQW398YK48=GS1.1.1713934701.1.0.1713934701.60.0.0; _ga=GA1.1.1321918170.1713934701
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
date: Wed, 24 Apr 2024 04:58:19 GMT
set-cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; expires=Wed, 24-Apr-2024 06:58:19 GMT; Max-Age=7200; path=/
nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi; expires=Wed, 24-Apr-2024 06:58:19 GMT; Max-Age=7200; path=/; httponly
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| upkoffingr.com/zone?pub=0&zone_id=1611787&is_mobile=false&domain=getnewsfirst.com&var=&ymid=&var_3=&tg=0&sw=3.1.501 | 139.45.197.251 | 200 OK | 880 B |
URL GET HTTP/2upkoffingr.com/zone?pub=0&zone_id=1611787&is_mobile=false&domain=getnewsfirst.com&var=&ymid=&var_3=&tg=0&sw=3.1.501 IP139.45.197.251:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectupkoffingr.com Fingerprint40:0D:15:A9:71:23:B0:82:27:0A:48:93:1F:0C:8B:38:F0:02:F8:D5 ValidityMon, 05 Feb 2024 05:45:55 GMT - Sun, 05 May 2024 05:45:54 GMT
Hash1b6e92a1ee85bb45bb0bc5b06275e6e9 2ca13e3fe5671b43a0ad920c152e6362d744321c 7d4e5aa912dbdc93a8ae85439c7625bb886ae554d4fc1a84acb287a0d8d063ef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /zone?pub=0&zone_id=1611787&is_mobile=false&domain=getnewsfirst.com&var=&ymid=&var_3=&tg=0&sw=3.1.501 HTTP/1.1
Host: upkoffingr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getnewsfirst.com/
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: application/json; charset=utf-8
content-length: 880
x-trace-id: 75e64e89d35391e6a4d2e209ae4ec5f4
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KQW398YK48&cid=1321918170.1713934701>m=45je44m0v9112051222za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=720503028 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KQW398YK48&cid=1321918170.1713934701>m=45je44m0v9112051222za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=720503028 IP142.250.74.163:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-KQW398YK48&cid=1321918170.1713934701>m=45je44m0v9112051222za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=720503028 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 24 Apr 2024 04:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/css/common.css | 188.42.224.102 | 200 OK | 817 B |
URL GET HTTP/2getnewsfirst.com/css/common.css IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typeASCII text, with very long lines (1850), with no line terminators Hashec770e593f1ba17e1e55a2444cfd2073 fe5902a2d0df9ff5c16c74b839d63a93d40ccaf5 56fc3286e6274c8a4bd8d761bc2753f89ad7afd1a12649ea53899887920bbe93
GET /css/common.css HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 11:14:09 GMT
etag: W/"604b4d01-73a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/assets/hardcore/css/style.css | 188.42.224.102 | 200 OK | 4.9 kB |
URL GET HTTP/2getnewsfirst.com/assets/hardcore/css/style.css IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typeassembler source, ASCII text, with very long lines (492) Hashbfa483f1f7330f6c66cdacfadbfa7c0a 5bd1963edfd0358da8f1c62c89bca76f811d4c50 0b1fe76d4b2f0ad341d491e11f512207ec15b8d06056983fb28e5c41fe45b1c5
GET /assets/hardcore/css/style.css HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 11:11:23 GMT
etag: W/"604b4c5b-4702"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| upkoffingr.com/custom | 139.45.197.251 | 200 OK | 0 B |
IP139.45.197.251:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectupkoffingr.com Fingerprint40:0D:15:A9:71:23:B0:82:27:0A:48:93:1F:0C:8B:38:F0:02:F8:D5 ValidityMon, 05 Feb 2024 05:45:55 GMT - Sun, 05 May 2024 05:45:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /custom HTTP/1.1
Host: upkoffingr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://getnewsfirst.com/
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/16x16/1529485692_5b2a197c6d640.png | 104.22.25.116 | 200 OK | 841 B |
URL GET HTTP/2news.littlecdn.com/16x16/1529485692_5b2a197c6d640.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash6ac11eaf9cddd2f5b0262181be31d789 bb73b808725d5bd7f14934b2c313afc464074493 a63e259d0377053ca1b8c28d87e966e8186d0bed5886070fdbe505f6eed408f6
GET /16x16/1529485692_5b2a197c6d640.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: image/png
content-length: 841
last-modified: Wed, 20 Jun 2018 09:08:13 GMT
etag: W/"95141feee9ca9b3b06f33ec2fb23348d"
expires: Thu, 25 Apr 2024 04:58:21 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793848a3922569c-OSL
X-Firefox-Spdy: h2
|
|
| upkoffingr.com/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectupkoffingr.com Fingerprint40:0D:15:A9:71:23:B0:82:27:0A:48:93:1F:0C:8B:38:F0:02:F8:D5 ValidityMon, 05 Feb 2024 05:45:55 GMT - Sun, 05 May 2024 05:45:54 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /custom HTTP/1.1
Host: upkoffingr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getnewsfirst.com/
Content-Type: application/json
Content-Length: 728
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: d1e487dfc95cc03d2b65a3096ad24098
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| upkoffingr.com/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectupkoffingr.com Fingerprint40:0D:15:A9:71:23:B0:82:27:0A:48:93:1F:0C:8B:38:F0:02:F8:D5 ValidityMon, 05 Feb 2024 05:45:55 GMT - Sun, 05 May 2024 05:45:54 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /custom HTTP/1.1
Host: upkoffingr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getnewsfirst.com/
Content-Type: application/json
Content-Length: 369
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: ac249dd9b23ec9fd070cd84eba8d20b2
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| upkoffingr.com/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectupkoffingr.com Fingerprint40:0D:15:A9:71:23:B0:82:27:0A:48:93:1F:0C:8B:38:F0:02:F8:D5 ValidityMon, 05 Feb 2024 05:45:55 GMT - Sun, 05 May 2024 05:45:54 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /custom HTTP/1.1
Host: upkoffingr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getnewsfirst.com/
Content-Type: application/json
Content-Length: 378
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: ecbd8a2ba9f9be6342d44ab71c24f711
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/180x180/1529485692_5b2a197c6d640.png | 104.22.25.116 | 200 OK | 73 kB |
URL GET HTTP/2news.littlecdn.com/180x180/1529485692_5b2a197c6d640.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash35c5fc0b4870aa02f70896e093b22583 a1f73564f15dbab4367003fb5160ad367960602a 7d20872b5f9241d4e272b9acd563469c96e48c1ce447eb83f03d55068dae0c06
GET /180x180/1529485692_5b2a197c6d640.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: image/png
content-length: 73157
last-modified: Wed, 20 Jun 2018 09:08:13 GMT
etag: W/"95141feee9ca9b3b06f33ec2fb23348d"
expires: Thu, 25 Apr 2024 04:58:21 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793848a3920569c-OSL
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://getnewsfirst.com/
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/750x350/1567505014_5d6e3a769565f0.50858331.jpeg | 104.22.25.116 | 200 OK | 24 kB |
URL GET HTTP/2news.littlecdn.com/750x350/1567505014_5d6e3a769565f0.50858331.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 526x350, components 3 Hash1636ed9a3125b9f964af7480ad797684 c965b21dba45ab899ef46778cae165d7bbfa262e a8185a03300eb8394d02618561179f4cd52aaa1923423201b423c61f82071452
GET /750x350/1567505014_5d6e3a769565f0.50858331.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: image/jpeg
content-length: 23941
last-modified: Tue, 03 Sep 2019 10:03:35 GMT
etag: W/"3c2525b7e7fa794a2583450c5aef4079"
expires: Thu, 25 Apr 2024 04:58:21 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793848ab96b569c-OSL
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashae853df6aff2ba9a4c615f23e2cb4d0b 91f33ae7730619029611e8b1ac2d44d0b14cafea e1683862ebdf8f716a27c9cfdb690dd93c9c9310ce1b0ed598ee365073feb3d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getnewsfirst.com/
Content-Type: application/json
Content-Length: 501
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/js/common.js | 188.42.224.102 | 200 OK | 21 kB |
URL GET HTTP/2getnewsfirst.com/js/common.js IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typegzip compressed data, max speed, from Unix Hashe3c9e4cdee1334ce9b7d6b4bc14499f7 d98cf35dfdca898d3a2bd618a7ab21882fb2d751 b531a4de9fd3ea56e6ba3c5e6fc65dab4d62fecbc3f36197ce1beb16bc52dc67
GET /js/common.js HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Mar 2021 11:14:09 GMT
etag: W/"604b4d01-50a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| upkoffingr.com/pfe/current/universal.min.js?v=3.1.501 | 139.45.197.251 | 200 OK | 34 kB |
URL GET HTTP/2upkoffingr.com/pfe/current/universal.min.js?v=3.1.501 IP139.45.197.251:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectupkoffingr.com Fingerprint40:0D:15:A9:71:23:B0:82:27:0A:48:93:1F:0C:8B:38:F0:02:F8:D5 ValidityMon, 05 Feb 2024 05:45:55 GMT - Sun, 05 May 2024 05:45:54 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash2acb34f1e8094db831ad441b56636970 806350579c4f16699501b9a0d1f6c2bee2c3ddca cd9f9753fab1861f9d06ebe747496492b6fad0cdcea41c39f98ad6c5acbc2c6e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pfe/current/universal.min.js?v=3.1.501 HTTP/1.1
Host: upkoffingr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getnewsfirst.com/
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 08:30:07 GMT
etag: W/"66222b8f-15cad"
access-control-allow-origin: https://getnewsfirst.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/assets/hardcore/css/flex.css | 188.42.224.102 | 200 OK | 72 kB |
URL GET HTTP/2getnewsfirst.com/assets/hardcore/css/flex.css IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typegzip compressed data, max speed, from Unix Hashda30407c1b3ae5bf9906ce1bd28fe0d6 d00f5486757999e708eb407bb553d5d92a05c954 d63bf020a6c17a3303e655ffe3b4014332962fb43bcda9ecdbabf8742e908f56
GET /assets/hardcore/css/flex.css HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 11:11:23 GMT
etag: W/"604b4c5b-445d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/assets/hardcore/css/noflex.css | 188.42.224.102 | 200 OK | 30 kB |
URL GET HTTP/2getnewsfirst.com/assets/hardcore/css/noflex.css IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typegzip compressed data, max speed, from Unix Hash178664307cd157063d3dc3bcdccd11ca f9a9defe583955353ee083414eeccd561c4ce747 30a0c4a738ce55c50230f7810a52823338d43e612296664257d72b4dd22e8ed4
GET /assets/hardcore/css/noflex.css HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 11:11:23 GMT
etag: W/"604b4c5b-21b3"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/750x350/1567505012_5d6e3a74649595.44438282.jpeg | 104.22.25.116 | 200 OK | 39 kB |
URL GET HTTP/2news.littlecdn.com/750x350/1567505012_5d6e3a74649595.44438282.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 525x350, components 3 Hashb8b494167a46403456c9276f4038f819 dfe5530024bf94529ca9400fa39e6e9dbcacd121 89fbadab3100ad811e28d015d758ec0becf33851052589a3712260f123f5b789
GET /750x350/1567505012_5d6e3a74649595.44438282.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: image/jpeg
content-length: 39238
last-modified: Tue, 03 Sep 2019 10:03:33 GMT
etag: W/"9278343b32612c702bf66466f4615ced"
expires: Thu, 25 Apr 2024 04:58:21 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793848bba15569c-OSL
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/assets/hardcore/js/modernizr-custom.js | 188.42.224.102 | 200 OK | 4.6 kB |
URL GET HTTP/2getnewsfirst.com/assets/hardcore/js/modernizr-custom.js IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typeJavaScript source, ASCII text, with very long lines (4729), with no line terminators Hashbedf5ddfd546f88a9a927e819d3d7ff1 fc95d753aaa8168b3f6ba02d703e27cfef0580aa c4551d3f586fd791c306df70301d127445e5715b3287f31d038e697d1263c9f2
GET /assets/hardcore/js/modernizr-custom.js HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Mar 2021 11:11:23 GMT
etag: W/"604b4c5b-11e1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| upkoffingr.com/ntfc.php?p=1611787 | 139.45.197.251 | 200 OK | 14 kB |
URL GET HTTP/2upkoffingr.com/ntfc.php?p=1611787 IP139.45.197.251:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectupkoffingr.com Fingerprint40:0D:15:A9:71:23:B0:82:27:0A:48:93:1F:0C:8B:38:F0:02:F8:D5 ValidityMon, 05 Feb 2024 05:45:55 GMT - Sun, 05 May 2024 05:45:54 GMT
File typeJavaScript source, ASCII text, with very long lines (14331), with no line terminators Hash54f28a63eab927dcbdf78ec5c4cd3bc2 f629507bc577011e339aa3c0d0db50e51badb041 d187c23175f0e3cb8788a97cd7f441745eef3ee273a13739bafd3892fd436d0e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ntfc.php?p=1611787 HTTP/1.1
Host: upkoffingr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 08:30:07 GMT
etag: W/"66222b8f-37fb"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| getnewsfirst.com/assets/hardcore/css/query.css | 188.42.224.102 | 200 OK | 1.7 kB |
URL GET HTTP/2getnewsfirst.com/assets/hardcore/css/query.css IP188.42.224.102:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectgetnewsfirst.com FingerprintD8:8E:2A:E6:D4:2E:F5:8E:B4:6B:AA:C2:DF:D8:7E:AE:33:71:2A:BE ValidityMon, 08 Apr 2024 19:27:44 GMT - Sun, 07 Jul 2024 19:27:43 GMT
File typeASCII text, with very long lines (1784), with no line terminators Hash7ba0ef76754861c05d321ceadb906abb 10049e3659168a7e246269ee8d40d725ecbe5c55 a91dead82f310f71050906e615f2e78b6d7170e23350adb4a314c0f74eb3eb5c
GET /assets/hardcore/css/query.css HTTP/1.1
Host: getnewsfirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Cookie: XSRF-TOKEN=Hy9yK1CydyzX6ySXve8zqZAcM1JujaXiBJDu9M2J; nfst_session=4Zra7mwqTSdnN3FkihIWZrhq6PNQRUKyEpelXhhi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 11:11:23 GMT
etag: W/"604b4c5b-6a2"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Rajdhani:400,700|Roboto:400,700&subset=cyrillic | 142.250.74.106 | 200 OK | 6.5 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Rajdhani:400,700|Roboto:400,700&subset=cyrillic IP142.250.74.106:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (6678), with no line terminators Hashd47b5ba54dac1145ea071062570a37f3 c5c733299ce4c1660292bc59b6bfd02690e32c2f 6cdfe2175fd387de3e3e628b4098b37e475147dd103aa80d5e2f8e87ce1abf43
GET /css?family=Rajdhani:400,700|Roboto:400,700&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 04:58:20 GMT
date: Wed, 24 Apr 2024 04:58:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-security-policy-report-only: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/bcfae741e379a885f2ab2cf83ebe6d32/mr
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/flexslider/2.7.1/fonts/flexslider-icon.woff | 104.17.25.14 | 200 OK | 1.3 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/flexslider/2.7.1/fonts/flexslider-icon.woff IP104.17.25.14:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 1268, version 1.0 Hashf8b92f66539473eea649c8514eb836a0 9876bce2a7b39125bd7a406c445e46e704d7b37e 333fe8266952f16c8b686f3edd78293da28e6eaef314dca86bc4eeaa23f290e8
GET /ajax/libs/flexslider/2.7.1/fonts/flexslider-icon.woff HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: application/octet-stream; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: W/"5eb03e5e-4f4"
last-modified: Mon, 04 May 2020 16:10:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 550561
expires: Mon, 14 Apr 2025 04:58:21 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rULogShOfYkJr1FBu4vO6dCxCSTKaAAM0vNQu0KE8MfZaafs3K8Vxx8T4Ery%2BarvEIN0gYUjpFjweNVpUIa7KF3xw5sDa1jj6l8PYeCp4PVe6Rz4q08lFU7yUiDHaW9ta%2FP6zeol"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8793848afaf7712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| news.littlecdn.com/750x350/1567505005_5d6e3a6d28cfd8.00315677.jpeg | 104.22.25.116 | 200 OK | 20 kB |
URL GET HTTP/2news.littlecdn.com/750x350/1567505005_5d6e3a6d28cfd8.00315677.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 526x350, components 3 Hash9c871c3db3477f9de951c932fbbf6db9 e25820977682852fb13e341a89b4e30aedeaac7e cb990e922573f44de2d0ae542d28fccfd16a45d0749d0bff15543d7544c83f19
GET /750x350/1567505005_5d6e3a6d28cfd8.00315677.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: image/jpeg
content-length: 20222
last-modified: Tue, 03 Sep 2019 10:03:26 GMT
etag: W/"d37f2d8364d169378bbdee6de9165d2f"
expires: Thu, 25 Apr 2024 04:58:21 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793848bba13569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/750x350/1567505010_5d6e3a729f1eb6.77189433.png | 104.22.25.116 | 200 OK | 70 kB |
URL GET HTTP/2news.littlecdn.com/750x350/1567505010_5d6e3a729f1eb6.77189433.png IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 667 x 350, 8-bit/color RGBA, non-interlaced Hashca6b65cee8770ca2a9f3c78db38a8e22 f80f53cc387d1bc642e54475e70d0eba4c8f49bf 34f200bf11ddbadac727cd1a59341f9ea1ed2c3e8fcaa3112605146a58cf0e39
GET /750x350/1567505010_5d6e3a729f1eb6.77189433.png HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: image/png
content-length: 70282
last-modified: Tue, 03 Sep 2019 10:03:31 GMT
etag: W/"8325af14cbdaf2bf91096cbe84ff0474"
expires: Thu, 25 Apr 2024 04:58:21 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793848bba18569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/750x350/1567505006_5d6e3a6eea9a31.27425008.jpeg | 104.22.25.116 | 200 OK | 29 kB |
URL GET HTTP/2news.littlecdn.com/750x350/1567505006_5d6e3a6eea9a31.27425008.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 516x350, components 3 Hash0de60b655c871ede55a11541a74894a5 20dcd15338ce8b61aa164fcb0419314ab0fb9fe4 0e150599c5f1eca4e67d4e2084ca615a7c6345a1236694618321fc0206038efa
GET /750x350/1567505006_5d6e3a6eea9a31.27425008.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:21 GMT
content-type: image/jpeg
content-length: 28979
last-modified: Tue, 03 Sep 2019 10:03:28 GMT
etag: W/"cbe2ac12417b41fd61d0fa190efb10dd"
expires: Thu, 25 Apr 2024 04:58:21 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793848bca1a569c-OSL
X-Firefox-Spdy: h2
|
|
| news.littlecdn.com/177x99/1564996744_5d47f488143de.jpeg | 104.22.25.116 | 200 OK | 5.6 kB |
URL GET HTTP/2news.littlecdn.com/177x99/1564996744_5d47f488143de.jpeg IP104.22.25.116:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 151x99, components 3 Hash6fff6f2f92e202ee06a8da82d1e922ef 14c85960faae53fbde137d59fe403f5bca64e7cf 80b5e5c879aaadc51313279ebe8a2b465e2e7b189d33774a507d944dd0a1d599
GET /177x99/1564996744_5d47f488143de.jpeg HTTP/1.1
Host: news.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:58:20 GMT
content-type: image/jpeg
content-length: 5638
last-modified: Mon, 05 Aug 2019 09:19:05 GMT
etag: W/"10e417627eaed26b0ddae347c2dbc460"
expires: Thu, 25 Apr 2024 04:58:20 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879384846d43569c-OSL
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-KQW398YK48>m=45je44m0v9112051222za200&_p=1713934700222&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1321918170.1713934701&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1713934701&sct=1&seg=0&dl=https%3A%2F%2Fgetnewsfirst.com%2F&dt=Top%20News%3A%20Politics%20%26%20Business%2C%20Arts%20%26%20Entertainment&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1791 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-KQW398YK48>m=45je44m0v9112051222za200&_p=1713934700222&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1321918170.1713934701&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1713934701&sct=1&seg=0&dl=https%3A%2F%2Fgetnewsfirst.com%2F&dt=Top%20News%3A%20Politics%20%26%20Business%2C%20Arts%20%26%20Entertainment&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1791 IP216.239.32.36:443
Requested byhttps://getnewsfirst.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KQW398YK48>m=45je44m0v9112051222za200&_p=1713934700222&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1321918170.1713934701&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1713934701&sct=1&seg=0&dl=https%3A%2F%2Fgetnewsfirst.com%2F&dt=Top%20News%3A%20Politics%20%26%20Business%2C%20Arts%20%26%20Entertainment&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1791 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getnewsfirst.com
DNT: 1
Connection: keep-alive
Referer: https://getnewsfirst.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://getnewsfirst.com
date: Wed, 24 Apr 2024 04:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|