firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 19:42:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HOKfSA5hwvb9SqkrCzxPhmUPtYuQhTJnF57l6bt3Z-E9nQDkrGOUyw==
Age: 2065
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18872
Expires: Sat, 03 Sep 2022 01:31:05 GMT
Date: Fri, 02 Sep 2022 20:16:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8Cjk9O6AcjyrjIX1ZsNGaoRyg2HO2y0wSghzTM7v7B8r22cfvQj-8g==
age: 68476
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 20:16:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
n3ws.news/
70.32.23.73301 Moved Permanently 0 B IP 70.32.23.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.2.34
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://n3ws.news/
content-length: 0
date: Fri, 02 Sep 2022 20:16:33 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 19:38:16 GMT
Expires: Fri, 02 Sep 2022 20:15:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tf8k68P6MtwYfql3d4sfr2IJKTPjrjrQgdA9q1HxqA9E-AyX7lW7ig==
Age: 2297
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2629
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:33 GMT
Last-Modified: Fri, 02 Sep 2022 19:32:44 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.56.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.56.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bZgtW31TcQeOqyGnICCw3g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BuKC/zaW5EaB0T+xI81cPiiZ86E=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 59bdc2e0a449c6388eb0c96da3586600
c61d2414961c4f05c9bcf400d6a1d9792fbe9093
2b3c911dddbf9fad01ea3232354ac2f0e6731541ab3a7e916ef09682dd43cf4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
n3ws.news/wp-content/plugins/gutenberg/build/block-library/style.css?ver=13.9.0
70.32.23.73200 OK 11 kB URL HTTP/2 n3ws.news/wp-content/plugins/gutenberg/build/block-library/style.css?ver=13.9.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3d7686510a7bccffe45980b65bfb99a0
5681e9d57260e1cdedaceb237c6b9ae4c2de88e3
9889617281d4acd8c1e8e62c4ef1770f97e2631078c69c93fbdf33546e043c05
GET /wp-content/plugins/gutenberg/build/block-library/style.css?ver=13.9.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Wed, 17 Aug 2022 20:18:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11073
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
70.32.23.73200 OK 1.1 kB URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash 8f2da34c6f082c7bec00f9cca661fd59
d0de5b6b29a9788a64826b833465a9d08f7c2ab7
d461fea6636b26aab698f636b2518709cb79416c7d3916d6b03497c4d75befdd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Sun, 14 Aug 2022 05:09:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1109
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
n3ws.news/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
70.32.23.73200 OK 21 kB URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
IP 70.32.23.73:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 844842439ba060ee255a40ec00e69ff5
a37c3b78aeea3c7d58a6e59bfa99ff3d81ec5b8c
169af0ea951379b0d2a47976e8e76c6684fb2c92146e23c31e57079b9cacdba2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Sun, 14 Aug 2022 05:09:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20786
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/arrow-twitter-feed/css/jquery.socialfeed.css?ver=1.0.0
70.32.23.73200 OK 800 B URL HTTP/2 n3ws.news/wp-content/plugins/arrow-twitter-feed/css/jquery.socialfeed.css?ver=1.0.0
IP 70.32.23.73:0
Hash 7f7ef653e9f17deea58ccba3621eb54e
7eccff77016bd9268e8f3d93ee6cce005627671f
e7c50e5fd8987d25359dfc3646a12e2820f8f10000b055614a5e97cb76173005
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arrow-twitter-feed/css/jquery.socialfeed.css?ver=1.0.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Sat, 20 Jul 2019 21:34:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 800
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/gamipress/assets/css/gamipress.min.css?ver=2.3.9.2
70.32.23.73200 OK 7.9 kB URL HTTP/2 n3ws.news/wp-content/plugins/gamipress/assets/css/gamipress.min.css?ver=2.3.9.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (30376), with no line terminators
Hash 5fc11a0d84cfa097f5c84eb9fee5f723
39ae711fe672c3f7711f3c2a79de8dd350848bd7
ed50e7267e3427961e829ab64fa5e3aeb1937ceebc32e852a3893380ff49e23a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gamipress/assets/css/gamipress.min.css?ver=2.3.9.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Fri, 12 Aug 2022 04:42:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7883
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0
70.32.23.73200 OK 2.3 kB URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 09d93f4de720fc11a2944fea38fcafcd
e46cf6a8d3373c7fa5feba0b30cd9b9983f719b2
cf900721be13309b96cf6c6f56b1c0a40194e8aea1b0a0361739219c9c0f9998
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Sun, 14 Aug 2022 05:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2329
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0
70.32.23.73200 OK 8.4 kB URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0
IP 70.32.23.73:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 60aea8fe062ea93aa6dfa342ea23b7fd
bf9a4843acf8f1f116ef2cae7fb40a9a2f37253a
7db430ef3124de87a8a33cf0ffe134a86bff67de803eea16f4b3ed4d2d569d4f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Sun, 14 Aug 2022 05:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8432
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
70.32.23.73200 OK 183 B URL HTTP/2 n3ws.news/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
IP 70.32.23.73:0
Hash 0db927906d58a427b489ed942018f967
f7dd9aab39d08aa140ec69dc0f5a9c15ed56c16c
6212fb8db9276b34a0e7cc61af432c98df2e18ec1b2f531f12aab1221f0ad977
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Sun, 17 Jul 2022 07:02:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 183
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce-mercadopago/assets/css/global.min.css?ver=6.0.2
70.32.23.73200 OK 323 B URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce-mercadopago/assets/css/global.min.css?ver=6.0.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (777), with no line terminators
Hash ecae58c7171da59231f9346131998985
33361a3948de04955fc83cc5b69ac7c70dcc7e98
3e5f829921f9e41138ac419dbb61f35f55f660d57d4ab1b61b545da92b104f9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce-mercadopago/assets/css/global.min.css?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Sun, 14 Aug 2022 01:40:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 323
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/themes/cutewp-pro/style.css
70.32.23.73200 OK 13 kB URL HTTP/2 n3ws.news/wp-content/themes/cutewp-pro/style.css
IP 70.32.23.73:0
File type ASCII text, with very long lines (1134)
Hash 81e73d4a9909ac1d0c23397eb1dbc452
75f527bd48014e2f391abd04638e073efa670829
9ecdd8425038a49b4f6fb68c7b0cd4e80302d853500fa4be1f75e5a790ead8ac
GET /wp-content/themes/cutewp-pro/style.css HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Thu, 02 May 2019 05:12:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12982
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/themes/cutewp-pro/assets/css/font-awesome.min.css
70.32.23.73200 OK 6.7 kB URL HTTP/2 n3ws.news/wp-content/themes/cutewp-pro/assets/css/font-awesome.min.css
IP 70.32.23.73:0
File type ASCII text, with very long lines (30837)
Hash 97c6ce9b4936f66aa388ad33c39aba2d
3f14a7e78fbb4935cf35c20779dc2035531849a9
1eea453c424793fc56ef14093c10b373e3ca8388a70e847394e8084048c5ce38
GET /wp-content/themes/cutewp-pro/assets/css/font-awesome.min.css HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Thu, 02 May 2019 02:30:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6658
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/arrow-twitter-feed/bower_components/codebird-js/codebird.js?ver=6.0.2
70.32.23.73200 OK 11 kB URL HTTP/2 n3ws.news/wp-content/plugins/arrow-twitter-feed/bower_components/codebird-js/codebird.js?ver=6.0.2
IP 70.32.23.73:0
Hash d1533b1b77821274273ddf847f2f313c
e2c8cf55496df1727665e6ee60e5e2167d7835c3
7829712d8d74ed6c7fec5ef43854d97898b7d6aee2b6a7613223e1aaf31195f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arrow-twitter-feed/bower_components/codebird-js/codebird.js?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sat, 20 Jul 2019 21:34:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11261
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/arrow-twitter-feed/js/jquery.socialfeed.js?ver=6.0.2
70.32.23.73200 OK 6.0 kB URL HTTP/2 n3ws.news/wp-content/plugins/arrow-twitter-feed/js/jquery.socialfeed.js?ver=6.0.2
IP 70.32.23.73:0
Hash 918c037401e7b63ad0cbbd32ddade56a
177dd200324e61050f2379b3ca9be18ec1a22174
6240c978fc24583d2a216f842abef6480ae786ddd3efdf80b4dc44b9757b71a2
GET /wp-content/plugins/arrow-twitter-feed/js/jquery.socialfeed.js?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sat, 20 Jul 2019 21:34:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5994
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/gamipress-social-share/assets/css/gamipress-social-share.min.css?ver=1.2.4
70.32.23.73200 OK 770 B URL HTTP/2 n3ws.news/wp-content/plugins/gamipress-social-share/assets/css/gamipress-social-share.min.css?ver=1.2.4
IP 70.32.23.73:0
File type ASCII text, with very long lines (1835), with no line terminators
Hash 0abf60be6397d570c41ab7d6c3a6d6ed
f448d47983fa4efb45310497c7cebb709c7f7b66
ac29900ecd29a06da003a991a6a6778e6ab4638c6bb9bb69b3beb20a7af0991c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gamipress-social-share/assets/css/gamipress-social-share.min.css?ver=1.2.4 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Fri, 24 Jun 2022 15:09:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 770
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
70.32.23.73200 OK 4.0 kB URL HTTP/2 n3ws.news/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Mon, 13 Dec 2021 06:02:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/miniorange-login-openid/includes/js/mo_openid_jquery.cookie.min.js?ver=6.0.2
70.32.23.73200 OK 743 B URL HTTP/2 n3ws.news/wp-content/plugins/miniorange-login-openid/includes/js/mo_openid_jquery.cookie.min.js?ver=6.0.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (1263)
Hash 390fbc32fcd01d7e18a3a1566ad09c8d
bfe1eef5a964eb02c1bdaf391b3e03cd007e0504
09c5e1e283a1092db29f77091178117d3388e9ec09563cff63b3cbf9487762eb
GET /wp-content/plugins/miniorange-login-openid/includes/js/mo_openid_jquery.cookie.min.js?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 04:44:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 743
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/
70.32.23.73200 OK 14 kB IP 70.32.23.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8895), with CRLF, LF line terminators
Hash 2dec15bfaf9d0333cb6fce06d26cc90a
5371d4d736fdd33ab225ef7267bd425c9511dacd
47b5d3c113ef30e23b4fdd81146ccdc44b84bfa47784c42a29820d6082914d5a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
content-type: text/html; charset=UTF-8
link: <https://n3ws.news/wp-json/>; rel="https://api.w.org/", <https://n3ws.news/wp-json/wp/v2/pages/344>; rel="alternate"; type="application/json", <https://n3ws.news/>; rel=shortlink
set-cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F; expires=Sun, 02-Oct-2022 20:16:33 GMT; Max-Age=2592000; path=/; secure
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Sep 2022 20:16:33 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/arrow-twitter-feed/bower_components/doT/doT.min.js?ver=6.0.2
70.32.23.73200 OK 1.4 kB URL HTTP/2 n3ws.news/wp-content/plugins/arrow-twitter-feed/bower_components/doT/doT.min.js?ver=6.0.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (528)
Hash b06bcc9b3bf7983b76a13334d6f8b0fc
987392e6f66956ba896ad0818f0ceaf105acc310
809ae3e6989f634548a6e7d148907b3b32b78d8e5a1b30a5460877adbb1516d9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arrow-twitter-feed/bower_components/doT/doT.min.js?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sat, 20 Jul 2019 21:34:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1446
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/arrow-twitter-feed/bower_components/moment/min/moment.min.js?ver=6.0.2
70.32.23.73200 OK 11 kB URL HTTP/2 n3ws.news/wp-content/plugins/arrow-twitter-feed/bower_components/moment/min/moment.min.js?ver=6.0.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (32024)
Hash d46b91bcc67bce35e9e2d848f78b7c49
3b3ed979bcdd71b29cbbdd9560e9be57a4e5a3e4
2f7e71e3203a181d3bb9a0dec815e69848b8e4374a94b4d0182aa71f8a020829
GET /wp-content/plugins/arrow-twitter-feed/bower_components/moment/min/moment.min.js?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sat, 20 Jul 2019 21:34:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10884
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/conditional-payments-for-woocommerce/frontend/js/woo-conditional-payments.js?ver=2.3.1
70.32.23.73200 OK 317 B URL HTTP/2 n3ws.news/wp-content/plugins/conditional-payments-for-woocommerce/frontend/js/woo-conditional-payments.js?ver=2.3.1
IP 70.32.23.73:0
Hash b991a4b74840c274dc85feda3f62b8ad
956b9e7e8adbab7264c6da59f90e1ab0f7c2db3c
71757c544bd76a2631248f598a8e73dee251e85f92c1acf75778aa191d09db6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/conditional-payments-for-woocommerce/frontend/js/woo-conditional-payments.js?ver=2.3.1 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Fri, 24 Jun 2022 15:07:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 317
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/mo_openid_login_icons.css?version=7.5.12&ver=6.0.2
70.32.23.73200 OK 419 B URL HTTP/2 n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/mo_openid_login_icons.css?version=7.5.12&ver=6.0.2
IP 70.32.23.73:0
Hash e2260e5f19b13909121b5980a0f7fdd3
27a0e100c85afefb56693154da74f341a07e5093
f79614d56121306230ec9770d453af8aa7ee901ad1f33beff02d08de2a956b75
GET /wp-content/plugins/miniorange-login-openid/includes/css/mo_openid_login_icons.css?version=7.5.12&ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Fri, 12 Aug 2022 04:44:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 419
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/bootstrap.min-preview.css?ver=6.0.2
70.32.23.73200 OK 2.0 kB URL HTTP/2 n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/bootstrap.min-preview.css?ver=6.0.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (611)
Hash b6387b611c473ba879b5d7087b4a4be5
860e78103850973a85c3aa6691efe3c69f6902ad
95c6323afc49dfa3a7c47288ad1ae967e63b0e8c2a446401758d4e9751ccf183
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/miniorange-login-openid/includes/css/bootstrap.min-preview.css?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Fri, 12 Aug 2022 04:44:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1969
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/gamipress/assets/js/gamipress.min.js?ver=2.3.9.2
70.32.23.73200 OK 2.4 kB URL HTTP/2 n3ws.news/wp-content/plugins/gamipress/assets/js/gamipress.min.js?ver=2.3.9.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (2015)
Hash 1eb89c3bdd4ce633fd5b1946b92328e7
e0e1cce9e033f1e883d6468b4794442ed3dd97ed
5995adf36f184a274b4e25cb8363b679eee1c2a53377d8b096ee2e847377536f
GET /wp-content/plugins/gamipress/assets/js/gamipress.min.js?ver=2.3.9.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 04:42:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2426
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/gamipress/assets/js/gamipress-events.min.js?ver=2.3.9.2
70.32.23.73200 OK 472 B URL HTTP/2 n3ws.news/wp-content/plugins/gamipress/assets/js/gamipress-events.min.js?ver=2.3.9.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (675)
Hash fd3886a738ed7f2377f8cf71794936e2
51a3ba67459687a1f1de5e6d83fb6d4088944683
59666a878044c2b39702f55dda1d090b5528ae5b97a982945d026ca97bec6985
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gamipress/assets/js/gamipress-events.min.js?ver=2.3.9.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 04:42:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 472
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0
70.32.23.73200 OK 3.2 kB URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (9115)
Hash 66c388e07cfb57895688b3347ab7290b
f23bd7a31995b3b19924575f2afa297a29257856
3971f3ab5179d1f4f91d2c102f27c2bf1dac2c04e2f62ff3eae3ebfa8c28494e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sun, 14 Aug 2022 05:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3245
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.0
70.32.23.73200 OK 974 B URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.0
IP 70.32.23.73:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash fd8b126d3265cc6afc5b672273f78531
5058e579885cccf36c44bdeb5b7318bd75952af9
72da6709db061566cb5f67322f674a77f68acb69ac6181d37f9ca4a1bb7287b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sun, 14 Aug 2022 05:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 974
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0
70.32.23.73200 OK 899 B URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sun, 14 Aug 2022 05:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
70.32.23.73200 OK 30 kB URL HTTP/2 n3ws.news/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Mon, 13 Dec 2021 06:02:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/mo-font-awesome.min.css?ver=6.0.2
70.32.23.73200 OK 13 kB URL HTTP/2 n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/mo-font-awesome.min.css?ver=6.0.2
IP 70.32.23.73:0
Hash 240faf3fd671088132c48ab38a36d198
b9018bccdd5f75db335f9fbdd27dda5b5fa5c466
87af243df16cb850616643219c5a41742806d72051f3a1e1de3c6cc78d417931
GET /wp-content/plugins/miniorange-login-openid/includes/css/mo-font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Fri, 12 Aug 2022 04:44:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12762
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0
70.32.23.73200 OK 677 B URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sun, 14 Aug 2022 05:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0
70.32.23.73200 OK 934 B URL HTTP/2 n3ws.news/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0
IP 70.32.23.73:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Sun, 14 Aug 2022 05:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/themes/cutewp-pro/assets/js/jquery.fitvids.min.js
70.32.23.73200 OK 691 B URL HTTP/2 n3ws.news/wp-content/themes/cutewp-pro/assets/js/jquery.fitvids.min.js
IP 70.32.23.73:0
File type HTML document, ASCII text, with very long lines (1781)
Hash 5706029b894f1f8ce0f30811d0bc58ae
63786edfeea82ad57368f1fb675dc2de8118dd65
c4954c3e56f7156b5a94f527c58d32a89fb548fa391dfe72a25bef234895cfd8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cutewp-pro/assets/js/jquery.fitvids.min.js HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 02:30:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 691
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/themes/cutewp-pro/assets/js/jquery.marquee.min.js
70.32.23.73200 OK 1.9 kB URL HTTP/2 n3ws.news/wp-content/themes/cutewp-pro/assets/js/jquery.marquee.min.js
IP 70.32.23.73:0
File type ASCII text, with very long lines (516)
Hash 3c395cbf2842b9e7a39bc816413245be
d94fed5092c429e34c96e62b1f6976c0553895da
0c9692d8e985081d784db1153aad4e94abc5b04e8f6f3c419e113f324c5dd0b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cutewp-pro/assets/js/jquery.marquee.min.js HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 02:30:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1879
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/themes/cutewp-pro/assets/js/ResizeSensor.min.js
70.32.23.73200 OK 1.1 kB URL HTTP/2 n3ws.news/wp-content/themes/cutewp-pro/assets/js/ResizeSensor.min.js
IP 70.32.23.73:0
File type ASCII text, with very long lines (3113), with no line terminators
Hash e8f50658e7c59af83411f49304f76343
fb5685f2e0e42ade2f002d18a79f721a4a25cfcc
59911bb95c2a3ca0e02312ecd348bb748c6146d6cc3b1d7373860cbe59a5cd11
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cutewp-pro/assets/js/ResizeSensor.min.js HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 02:30:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1132
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/themes/cutewp-pro/assets/js/theia-sticky-sidebar.min.js
70.32.23.73200 OK 1.6 kB URL HTTP/2 n3ws.news/wp-content/themes/cutewp-pro/assets/js/theia-sticky-sidebar.min.js
IP 70.32.23.73:0
File type HTML document, ASCII text, with very long lines (5370)
Hash d062ef9b777324a753e093371cac1496
548cb009f0eccaa486f588e709c45839afeed9d8
1bad167d272f1bddc878ad6724f70b6db7b72538a0aa79cb90e8eea07a13b255
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cutewp-pro/assets/js/theia-sticky-sidebar.min.js HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 02:30:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1631
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-includes/js/imagesloaded.min.js?ver=4.1.4
70.32.23.73200 OK 1.7 kB URL HTTP/2 n3ws.news/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 70.32.23.73:0
File type ASCII text, with very long lines (5477)
Hash fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Mon, 13 Dec 2021 06:02:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/themes/cutewp-pro/assets/js/custom.js
70.32.23.73200 OK 1.7 kB URL HTTP/2 n3ws.news/wp-content/themes/cutewp-pro/assets/js/custom.js
IP 70.32.23.73:0
Hash 2fe9f9254565eb394bdb031db89be85f
561230c0279b369b52170f19d947ffddacccf579
810cc0b5cdeb256f65addac5a29e4cba5f65a9743d7d9f729b2d9b03d2a6d996
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cutewp-pro/assets/js/custom.js HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 02:30:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1681
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/gamipress-social-share/assets/js/gamipress-social-share.min.js?ver=1.2.4
70.32.23.73200 OK 1.8 kB URL HTTP/2 n3ws.news/wp-content/plugins/gamipress-social-share/assets/js/gamipress-social-share.min.js?ver=1.2.4
IP 70.32.23.73:0
File type ASCII text, with very long lines (982)
Hash 270fda7a706cc8c539d84fd545cbf089
c398a83b651de4921d67752f00f07c5d9a1f4f36
5a9e913eed543801eb3684c6a8d77d03e0cf1bca3cd7d7d3784c5d1b1ea7464a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gamipress-social-share/assets/js/gamipress-social-share.min.js?ver=1.2.4 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Fri, 24 Jun 2022 15:09:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1821
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/miniorange-login-openid/includes/images/icons/g.png
70.32.23.73200 OK 1.2 kB URL HTTP/2 n3ws.news/wp-content/plugins/miniorange-login-openid/includes/images/icons/g.png
IP 70.32.23.73:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 39623e519898f9cd627b9e457b2410e0
67924d660a2f464b39dfbe2b015fc8743a95bbb1
0919f0d77b443057cc39d9258c3004b85c15d69e56a2a9727c90ffa8aaa02b76
GET /wp-content/plugins/miniorange-login-openid/includes/images/icons/g.png HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: image/png
last-modified: Fri, 12 Aug 2022 04:44:48 GMT
accept-ranges: bytes
content-length: 1173
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-content/uploads/2019/02/n3ws-1.png
70.32.23.73200 OK 20 kB URL HTTP/2 n3ws.news/wp-content/uploads/2019/02/n3ws-1.png
IP 70.32.23.73:0
File type PNG image data, 423 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c92f47adf7b4f2225332bffbb194502
d52ca694760172f9e52ad92e50fa3af2947a7d0f
72e7830f1effe950a7e8239dc08254f4f437ae2804a7e30ec4639be9d799a002
GET /wp-content/uploads/2019/02/n3ws-1.png HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: image/png
last-modified: Wed, 27 Feb 2019 18:38:25 GMT
accept-ranges: bytes
content-length: 20364
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-includes/js/masonry.min.js?ver=4.2.2
70.32.23.73200 OK 7.1 kB URL HTTP/2 n3ws.news/wp-includes/js/masonry.min.js?ver=4.2.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (23966)
Hash acbcd70975a7cfaf92dc02b2ede1fd24
7a50461999972abb541d4baf1ccf23d8e435aad6
c1250ec4943afb181633078eb9d67c5944fc64b2bb219c98406c286e9449189e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Mon, 13 Dec 2021 06:02:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7117
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
n3ws.news/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
70.32.23.73200 OK 4.6 kB URL HTTP/2 n3ws.news/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 70.32.23.73:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: application/javascript
last-modified: Thu, 23 Jun 2022 05:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/domine/v19/L0x8DFMnlVwD4h3hu_qn.woff2
142.250.74.163200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/domine/v19/L0x8DFMnlVwD4h3hu_qn.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 27624, version 1.0\012- data
Hash 1f72af2c5d07489f5ac244943db9d7eb
49aa6096e9b9b9d4949a79794a72cb31b744d0de
02fbcf6cd136ae3bfc98aecbbc0f0b1f348c05d96390d63a89cdc323a6dda70c
GET /s/domine/v19/L0x8DFMnlVwD4h3hu_qn.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://n3ws.news
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27624
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Aug 2022 22:01:48 GMT
expires: Sat, 26 Aug 2023 22:01:48 GMT
cache-control: public, max-age=31536000
age: 598487
last-modified: Mon, 11 Jul 2022 19:06:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/patuaone/v16/ZXuke1cDvLCKLDcimxB44_lu.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/patuaone/v16/ZXuke1cDvLCKLDcimxB44_lu.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12876, version 1.0\012- data
Hash 876bac7b767e811b11e77b8c25ad3fe7
f6ab3eff1ff70e567efe03927142a3813e9a2794
74609e166867aa3888ef3085b0011dd5e5e61d347f578195c8d7e10ae315af02
GET /s/patuaone/v16/ZXuke1cDvLCKLDcimxB44_lu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://n3ws.news
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12876
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 04:12:55 GMT
expires: Wed, 30 Aug 2023 04:12:55 GMT
cache-control: public, max-age=31536000
age: 317020
last-modified: Mon, 09 May 2022 18:40:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://n3ws.news
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:14:36 GMT
expires: Tue, 29 Aug 2023 21:14:36 GMT
cache-control: public, max-age=31536000
age: 342119
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Hash e46b4e2e3b47cc232937ebf72b4c537e
2675bc06ee643b8c935370325a327efb74746e6a
d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://n3ws.news
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:38:33 GMT
expires: Tue, 29 Aug 2023 21:38:33 GMT
cache-control: public, max-age=31536000
age: 340682
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13589
Expires: Sat, 03 Sep 2022 00:03:04 GMT
Date: Fri, 02 Sep 2022 20:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13589
Expires: Sat, 03 Sep 2022 00:03:04 GMT
Date: Fri, 02 Sep 2022 20:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13589
Expires: Sat, 03 Sep 2022 00:03:04 GMT
Date: Fri, 02 Sep 2022 20:16:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12756903aaa74164feb5f8525398ca36
9fef9b071daea6793cbbdfe391254ac4326b1aa2
6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16818
x-amzn-requestid: 6950a3c5-2cdc-4a21-854c-10d925e32ecd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XiYLvHRSIAMFotQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a6d7e-6e98b9a77e592bd01afb1d97;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 19:16:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3eBLhLH4APXLyj9kLHXNCFT9ccS_bnBp5INvMI93IFvOuBMERe_GgQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 13:36:12 GMT
age: 24023
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ba50b2fd1814c5ffc95aef40c69ce8c
cbb4546228115cccc122b16209e70171bef5c1f2
de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:48:18 GMT
age: 77297
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d848f7606889b048b6334e70d8a5e0
85239ef4f2fee8d3345e599bc942cab63ff3aaf6
da6cf33b440b51f72a70f309d62fd581aed246b6a78b8f329fa3899db15ff86d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5889
x-amzn-requestid: 42237574-f86e-4ece-b986-6d0c5910fcc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMVgHajoAMFmXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112756-48ff9d98464cf3c9680d97b4;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:42:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _7BBSlQQucoO5poncTYuX4fcmS4WFg3UcVFXalckGCCNFKJ0h5UpsQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:31:42 GMT
etag: "85239ef4f2fee8d3345e599bc942cab63ff3aaf6"
content-type: image/jpeg
age: 78293
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
age: 81549
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zYT0vF7Bxa5m84D12jI2w_A-MzR3wIMBOb0ubTEdNMlpYUes5aYdlQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:44:27 GMT
age: 81128
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qAMCgNpYR80vXSDyHFOFcbT8VukBemR2AGoGNaCfYaszKshu-gv6zg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:54:15 GMT
age: 80540
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
platform.linkedin.com/in.js
23.36.76.210200 OK 162 kB URL HTTP/2 platform.linkedin.com/in.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (41430)
Size 162 kB (162500 bytes)
Hash dd3f3dada4522bf0de6fa901d0192f3c
5e8eb638ee8c648da0fa56fae91d8f9d62893250
97df2a146adfc536b989002492bbe9df293c6dd565d539e34b04d529119db535
GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Play
expires: Fri, 2 Sep 2022 20:59:55 GMT
cache-control: public, max-age=3600
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-length: 162500
x-li-fabric: prod-ltx1
x-li-source-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
x-li-uuid: AAXntyyGD7sGIabvEuJXOQ==
date: Fri, 02 Sep 2022 20:16:35 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 0ccf02d52b75b85c65aa5460aa24aebf
50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a
d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1394
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Fri, 02 Sep 2022 20:16:35 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220
assets.pinterest.com/js/pinit.js
23.38.200.197200 OK 203 B URL HTTP/2 assets.pinterest.com/js/pinit.js
IP 23.38.200.197:0
File type ASCII text, with very long lines (361), with no line terminators
Hash 62d32c28f14783b94192cd8d35bc010d
78c1ba11e104bbd01a07225d0f8c41d7712094d4
e823b68f75484d37c74ebb652e2a5b183a1b65c43f1592985e519a8cabc44b2e
GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "62d32c28f14783b94192cd8d35bc010d"
content-encoding: br
accept-ranges: bytes
content-type: application/javascript; charset=utf-8
content-length: 203
cache-control: max-age=248
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1ad004f11b9c337660dfc7b6a5091de
5e017d69c3549cd9d9b33d11486989bec8500b5a
6dfad0eaa16c37e2c7c9264636adcf2b3eed1577d44df08c388a983b810121b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4023
Cache-Control: max-age=132300
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Etag: "6311b6b8-1d7"
Expires: Sun, 04 Sep 2022 09:01:35 GMT
Last-Modified: Fri, 02 Sep 2022 07:54:32 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1ad004f11b9c337660dfc7b6a5091de
5e017d69c3549cd9d9b33d11486989bec8500b5a
6dfad0eaa16c37e2c7c9264636adcf2b3eed1577d44df08c388a983b810121b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4023
Cache-Control: max-age=132300
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:35 GMT
Etag: "6311b6b8-1d7"
Expires: Sun, 04 Sep 2022 09:01:35 GMT
Last-Modified: Fri, 02 Sep 2022 07:54:32 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fn3ws.news
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fn3ws.news
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fn3ws.news HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 171201
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 02 Sep 2022 20:16:35 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F719)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
assets.pinterest.com/js/pinit_main.js?0.4082784688974971
23.38.200.197200 OK 19 kB URL HTTP/2 assets.pinterest.com/js/pinit_main.js?0.4082784688974971
IP 23.38.200.197:0
File type Unicode text, UTF-8 text, with very long lines (32016)
Hash 3725764cf05d1a0938de73d398772331
abdc742d760ca9c8f28c8d44ca9796d9ad6c0bc7
f8c41f2f59fc9e9d088bc9002eef583c3cf256b4cd371619b18107b4abd92812
GET /js/pinit_main.js?0.4082784688974971 HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
accept-ranges: bytes
content-type: application/javascript; charset=utf-8
content-length: 18679
cache-control: max-age=146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=ce849e98cca5a4ee844f095307ba25c1
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=ce849e98cca5a4ee844f095307ba25c1
IP 31.13.72.12:0
File type ASCII text, with very long lines (18453)
Hash 9dc827d69cbe2a750653671e1f053803
8e1645d8be52983e473ba2d3ef2519db794e0c66
59dd52b1f73eb860ce584734ed739427ccbf96bb09d28cec5478905be3c40675
GET /en_US/sdk.js?hash=ce849e98cca5a4ee844f095307ba25c1 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://n3ws.news
Connection: keep-alive
Referer: https://n3ws.news/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: e113a40147e97b1a9df1c3603a279909
etag: "a47052531b16bdb2c34ff4f19441b95d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 02 Sep 2023 18:45:35 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ncgn1py+KnUGU2ceHwU4Aw==
x-fb-debug: Runkw8PWVBCRpKSe4cFPYYMR3tCT+ShMl2kLUl3gc2NirKI0CSVRyMPQedAtq+wwsME2FYmv0HvbofnIqEh9jg==
content-length: 88136
x-fb-trip-id: 1904183273
date: Fri, 02 Sep 2022 20:16:36 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2f6b9c55581129935bf61375b4393aa0
58b9c3cef21d6e1d29f9ad1ecd35af4c82621b49
6f218951cc51c1378473df8596ec092cbd80f33895326720b3d7dd9d3f092ce4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6564
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:16:36 GMT
Last-Modified: Fri, 02 Sep 2022 18:27:12 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
www.facebook.com/x/oauth/status?client_id=203631627397227&input_token&origin=1&redirect_uri=https%3A%2F%2Fn3ws.news%2F&sdk=joey&wants_cookie_data=true
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=203631627397227&input_token&origin=1&redirect_uri=https%3A%2F%2Fn3ws.news%2F&sdk=joey&wants_cookie_data=true
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=203631627397227&input_token&origin=1&redirect_uri=https%3A%2F%2Fn3ws.news%2F&sdk=joey&wants_cookie_data=true HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3ws.news/
Origin: https://n3ws.news
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: https://n3ws.news
fb-s: unknown
x-fb-rlafr: 0
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
strict-transport-security: max-age=15552000; preload
x-fb-debug: o+AK9J28fmxNVu9VO0Qww6zAcD8o3UPL9zpyD94YgLtj81jZ3qHCgy1DsPG1cplHP6060EKo3Ai/8KWdsYierw==
content-length: 0
date: Fri, 02 Sep 2022 20:16:36 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=a0f1d549b4177a3114a46fa23a35e37c51720a22
104.244.42.200200 OK 308 B URL HTTP/2 syndication.twitter.com/settings?session_id=a0f1d549b4177a3114a46fa23a35e37c51720a22
IP 104.244.42.200:0
File type JSON data\012- , ASCII text, with very long lines (709), with no line terminators
Hash d8e2887342b363c09cd19d9b36199dbe
47c62bf9e3e60b6ab0b61eae608db43c04f7bea4
c38e646e125827b7520415ecaf228031c848266838cd894fa44a41686fedc553
GET /settings?session_id=a0f1d549b4177a3114a46fa23a35e37c51720a22 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 20:16:35 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Fri, 02 Sep 2022 20:16:36 GMT
content-length: 308
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 106
x-connection-hash: 62bbfd23589bb59d9c1bcc3db91dc7e33daafabd34db9f8c07869ba961311da4
X-Firefox-Spdy: h2
log.pinterest.com/?type=pidget&guid=8_P7Zk655Tiy&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fn3ws.news%2F&viaSrc=canonical
151.101.84.84200 OK 0 B URL HTTP/2 log.pinterest.com/?type=pidget&guid=8_P7Zk655Tiy&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fn3ws.news%2F&viaSrc=canonical
IP 151.101.84.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?type=pidget&guid=8_P7Zk655Tiy&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fn3ws.news%2F&viaSrc=canonical HTTP/1.1
Host: log.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 2
server: envoy
x-pinterest-rid: 1266787213296914
accept-ranges: bytes
date: Fri, 02 Sep 2022 20:16:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1667-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662149797.147074,VS0,VE94
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display:400,400i,700,700i|Domine:400,700|Oswald:400,700|Patua+One
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display:400,400i,700,700i|Domine:400,700|Oswald:400,700|Patua+One
IP 142.250.74.10:0
GET /css?family=Playfair+Display:400,400i,700,700i|Domine:400,700|Oswald:400,700|Patua+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 20:16:34 GMT
date: Fri, 02 Sep 2022 20:16:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/bootstrap-social.css?ver=6.0.2
70.32.23.73200 OK 0 B URL HTTP/2 n3ws.news/wp-content/plugins/miniorange-login-openid/includes/css/bootstrap-social.css?ver=6.0.2
IP 70.32.23.73:0
GET /wp-content/plugins/miniorange-login-openid/includes/css/bootstrap-social.css?ver=6.0.2 HTTP/1.1
Host: n3ws.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://n3ws.news/
Cookie: mo_openid_signup_url=https%3A%2F%2Fn3ws.news%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 09 Sep 2022 20:16:34 GMT
content-type: text/css
last-modified: Fri, 12 Aug 2022 04:44:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4574
date: Fri, 02 Sep 2022 20:16:34 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2