504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-17
Last Seen 2024-08-21
Times Seen 36548
Size 504 B (504 bytes)
MD5 219f59137337a0ee601729cab5ec83f6
SHA1 85f2e3496820405559fd526b44b9a915e0009a4f
SHA256 f9701bf0083b06f4a573774d1a4dd491236216bc08f1006a94ce79144df70a21
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F9701BF0083B06F4A573774D1A4DD491236216BC08F1006A94CE79144DF70A21"
Last-Modified: Sat, 17 Aug 2024 00:55:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8538
Expires: Sun, 18 Aug 2024 16:33:30 GMT
Date: Sun, 18 Aug 2024 14:11:12 GMT
Connection: keep-alive
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-16
Last Seen 2024-08-19
Times Seen 24530
Size 504 B (504 bytes)
MD5 9fca859eba50e585d7c1550a61d33bc3
SHA1 a33940f9c83807660f212e5ff511fe28e0413c0d
SHA256 08afcf8f1ad63cfd72b781cf4c69900e3fd266ee46389de3918570cf5d682f30
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "08AFCF8F1AD63CFD72B781CF4C69900E3FD266EE46389DE3918570CF5D682F30"
Last-Modified: Fri, 16 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8732
Expires: Sun, 18 Aug 2024 16:36:44 GMT
Date: Sun, 18 Aug 2024 14:11:12 GMT
Connection: keep-alive
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-17
Last Seen 2024-08-21
Times Seen 37163
Size 504 B (504 bytes)
MD5 69a9603269726ce602d708bf57058c4c
SHA1 8689e9ea81ea9636e7b08c3ed42650553a0c4e3b
SHA256 1a2339d740b715f3df1900d80114c8376ead57205961a6f896edf37b3ee3a897
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1A2339D740B715F3DF1900D80114C8376EAD57205961A6F896EDF37B3EE3A897"
Last-Modified: Sat, 17 Aug 2024 09:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9518
Expires: Sun, 18 Aug 2024 16:49:50 GMT
Date: Sun, 18 Aug 2024 14:11:12 GMT
Connection: keep-alive
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-16
Last Seen 2024-08-19
Times Seen 26129
Size 504 B (504 bytes)
MD5 75f615f839dbf8cd2f4a3d58e44455f2
SHA1 362b7a7d5cbe41d8a42cecec4ee755af0e07ddaf
SHA256 2c4833330979b96ed12b3480367f00be397e9f9ccb35a088e7c79e92eb26cae4
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "2C4833330979B96ED12B3480367F00BE397E9F9CCB35A088E7C79E92EB26CAE4"
Last-Modified: Fri, 16 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11789
Expires: Sun, 18 Aug 2024 17:27:42 GMT
Date: Sun, 18 Aug 2024 14:11:13 GMT
Connection: keep-alive
GET newztoday99.store/archives/526
200 OK 21 kB URL
newztoday99.store/archives/526
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (8856), with CRLF, LF line terminators
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 21 kB (20589 bytes)
MD5 cc087db5ceac6f518599bc5da6cb699b
SHA1 c894fd27520029f76f0657e0ff567fa2931dad88
SHA256 9d9dc1d6213b270088f09482d794418f3dbac8aec083045e7c4c204d734ef79a
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /archives/526 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:11:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-pingback: https://newztoday99.store/xmlrpc.php
link: <https://newztoday99.store/wp-json/>; rel="https://api.w.org/", <https://newztoday99.store/wp-json/wp/v2/posts/526>; rel="alternate"; title="JSON"; type="application/json", <https://newztoday99.store/?p=526>; rel=shortlink
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 12
accept-ranges: bytes
x-cache: HIT
content-length: 20589
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET imgproxy.amomama.com/QAtSMTqso5hxrmFUSJmBDMxpaxlfesNtrcMDgUFSlIc/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vYjhhYzBlNzUzNzVhNmMzNDFmZjhlMTA5N2M1MDE1Yzg1NTU3ZDA3MzRmYTEwMzY5MWNhYzMzYzliNTQ1YmM5OC5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg
200 OK 40 kB URL
imgproxy.amomama.com/QAtSMTqso5hxrmFUSJmBDMxpaxlfesNtrcMDgUFSlIc/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vYjhhYzBlNzUzNzVhNmMzNDFmZjhlMTA5N2M1MDE1Yzg1NTU3ZDA3MzRmYTEwMzY5MWNhYzMzYzliNTQ1YmM5OC5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg
IP / ASN
143.204.55.125
#16509 AMAZON-02
Requested by https://newztoday99.store/archives/526
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 40 kB (40234 bytes)
MD5 395ae83f1b072c0a977e38d2093beae9
SHA1 39264809ed87268a7545bf6bc1ea1cefd041ef3c
SHA256 7f16a67c5dcaae8de24f0b2a115ea71b6648cfafd9840ad6acb77614ee04659e
Certificate Info
Issuer Amazon
Subject amomama.com
Fingerprint 83:F5:83:A5:7E:7C:92:52:BC:FF:D4:73:7E:26:23:72:23:72:EA:A8
Validity Mon, 02 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
GET /QAtSMTqso5hxrmFUSJmBDMxpaxlfesNtrcMDgUFSlIc/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vYjhhYzBlNzUzNzVhNmMzNDFmZjhlMTA5N2M1MDE1Yzg1NTU3ZDA3MzRmYTEwMzY5MWNhYzMzYzliNTQ1YmM5OC5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg HTTP/1.1
Host: imgproxy.amomama.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 40234
date: Sat, 17 Aug 2024 14:19:41 GMT
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
cache-control: max-age=31536000, public
content-disposition: inline; filename="b8ac0e75375a6c341ff8e1097c5015c85557d0734fa103691cac33c9b545bc98.webp"
expires: Sun, 17 Aug 2025 14:19:41 GMT
server: imgproxy
x-request-id: mRkxUq_yMvejExTR_qbc5
vary: Accept,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 6_8hAtMB0r-vy9iryMJz-0jawcV_WBdb8TefsRBVfs6PFNsgJS1jrA==
age: 85893
X-Firefox-Spdy: h2
GET imgproxy.amomama.com/H17NqZf_IhushGTjBwTcyw8ajVMkzCeN2N9tZzGZZeM/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vZDIxNjE2YjcxN2IzNTQ2NTEyYzk1ZTU0MzVlOGIwNTA2MGYxMDVmMjIwNzU1Yjk4NjQ5MmE0NGVlOTBkZGU1NC5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg
200 OK 108 kB URL
imgproxy.amomama.com/H17NqZf_IhushGTjBwTcyw8ajVMkzCeN2N9tZzGZZeM/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vZDIxNjE2YjcxN2IzNTQ2NTEyYzk1ZTU0MzVlOGIwNTA2MGYxMDVmMjIwNzU1Yjk4NjQ5MmE0NGVlOTBkZGU1NC5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg
IP / ASN
143.204.55.125
#16509 AMAZON-02
Requested by https://newztoday99.store/archives/526
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 108 kB (107530 bytes)
MD5 50d7374949d3e195194ab540b8ab9aac
SHA1 5d7de575aa3b49d55df6db3d8201717c01b85224
SHA256 8d64577fbb5ac0c78532f9bdb7914c92bc0e54d90260892fe7f0e2d5bf025221
Certificate Info
Issuer Amazon
Subject amomama.com
Fingerprint 83:F5:83:A5:7E:7C:92:52:BC:FF:D4:73:7E:26:23:72:23:72:EA:A8
Validity Mon, 02 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
GET /H17NqZf_IhushGTjBwTcyw8ajVMkzCeN2N9tZzGZZeM/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vZDIxNjE2YjcxN2IzNTQ2NTEyYzk1ZTU0MzVlOGIwNTA2MGYxMDVmMjIwNzU1Yjk4NjQ5MmE0NGVlOTBkZGU1NC5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg HTTP/1.1
Host: imgproxy.amomama.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 107530
date: Sat, 17 Aug 2024 14:20:23 GMT
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
cache-control: max-age=31536000, public
content-disposition: inline; filename="d21616b717b3546512c95e5435e8b05060f105f220755b986492a44ee90dde54.webp"
expires: Sun, 17 Aug 2025 14:20:23 GMT
server: imgproxy
x-request-id: ACYaNBZdUyMHwbm-ZzT16
vary: Accept,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: evQNadJHIp_FywSykGRO0ci91Me2mqWBzfLV1FcLIwvBMn8CTVMuuw==
age: 85851
X-Firefox-Spdy: h2
GET newztoday99.store/wp-includes/css/dist/block-library/style.min.css?ver=6.6.1
200 OK 15 kB URL
newztoday99.store/wp-includes/css/dist/block-library/style.min.css?ver=6.6.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text, with very long lines (57765)
First Seen 2024-07-23
Last Seen 2025-08-02
Times Seen 3026
Size 15 kB (14836 bytes)
MD5 6c5989e44633f1e3f08ad845f9d9ce0b
SHA1 2b24009fd37e79d4a601e6d53d615fd2cd0a606b
SHA256 885c89e82436cfa3d0a0a5a9b2f6be6e1503457c810cc88ed2c09b4570ae9fd6
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.6.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: text/css
last-modified: Thu, 18 Jul 2024 16:54:17 GMT
vary: Accept-Encoding
etag: W/"669948b9-1b723"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 14836
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/css/fonts.css
200 OK 457 B URL
newztoday99.store/wp-content/themes/hitmag/css/fonts.css
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text
First Seen 2023-05-16
Last Seen 2025-08-02
Times Seen 586
Size 457 B (457 bytes)
MD5 53d02c162fa5e84278412d531f30d309
SHA1 0d15e703464ccda2a90951c7b32633382c755365
SHA256 439b33bd346fde1a965eaad8991a786bc771daa5c5a6dcf0b8a1d1fa1494f4f8
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/css/fonts.css HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: text/css
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
vary: Accept-Encoding
etag: W/"66b60676-e02"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 457
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET imgproxy.amomama.com/o37uW6IHzChPgfLLDNxMXCibjBAhrWI50aNt6C9lgRE/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vM2UyMmVmMzg1YzkxMjBiMzQzMWFiNGJjZWQyZDZkM2QzM2UzNGJjMDY1N2M5YWQ1MTJjNmMzMzhiNjRmZTBiNi5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg
200 OK 45 kB URL
imgproxy.amomama.com/o37uW6IHzChPgfLLDNxMXCibjBAhrWI50aNt6C9lgRE/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vM2UyMmVmMzg1YzkxMjBiMzQzMWFiNGJjZWQyZDZkM2QzM2UzNGJjMDY1N2M5YWQ1MTJjNmMzMzhiNjRmZTBiNi5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg
IP / ASN
143.204.55.125
#16509 AMAZON-02
Requested by https://newztoday99.store/archives/526
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 45 kB (44908 bytes)
MD5 21d36c49e5d974cb60d7ab88a25a2b65
SHA1 05b6e1c7f03456fa58f748bdc0be8eac4838e6d9
SHA256 7ea88b541cea71bf2c81eb8ff62ebd91056f770086b4d37706dd69dfa258222a
Certificate Info
Issuer Amazon
Subject amomama.com
Fingerprint 83:F5:83:A5:7E:7C:92:52:BC:FF:D4:73:7E:26:23:72:23:72:EA:A8
Validity Mon, 02 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
GET /o37uW6IHzChPgfLLDNxMXCibjBAhrWI50aNt6C9lgRE/rs:fill:992:0:1/g:no/aHR0cHM6Ly9jZG4uYW1vbWFtYS5jb20vM2UyMmVmMzg1YzkxMjBiMzQzMWFiNGJjZWQyZDZkM2QzM2UzNGJjMDY1N2M5YWQ1MTJjNmMzMzhiNjRmZTBiNi5wbmc_d2lkdGg9MTAyNCZoZWlnaHQ9MTAyNA.jpg HTTP/1.1
Host: imgproxy.amomama.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 44908
date: Sat, 17 Aug 2024 14:20:31 GMT
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
cache-control: max-age=31536000, public
content-disposition: inline; filename="3e22ef385c9120b3431ab4bced2d6d3d33e34bc0657c9ad512c6c338b64fe0b6.webp"
expires: Sun, 17 Aug 2025 14:20:31 GMT
server: imgproxy
x-request-id: eMJbvcBcF4PdWQkuglbsA
vary: Accept,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: wPd-3PkcL-y6RLnIUGu8Fbp_vD2JffgfjQ3D5znPZ8H4lVcXS_YT4w==
age: 85843
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1
200 OK 22 kB URL
newztoday99.store/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text, with very long lines (52276)
First Seen 2024-02-14
Last Seen 2025-08-02
Times Seen 665
Size 22 kB (22520 bytes)
MD5 fbe604525dc7a004d505396511f906bd
SHA1 fa63685b75e0fbbe4b4e37534b9d57ad7c912370
SHA256 2c051374591f7c373d512e10ab5538d9fdd17efeb861d7756933ad5b73ccab9f
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/css/all.min.css?ver=6.5.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: text/css
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
vary: Accept-Encoding
etag: W/"66b60676-190b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 22520
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/style.css?ver=1.4.0
200 OK 13 kB URL
newztoday99.store/wp-content/themes/hitmag/style.css?ver=1.4.0
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text, with very long lines (659)
First Seen 2024-07-02
Last Seen 2025-07-13
Times Seen 162
Size 13 kB (13230 bytes)
MD5 42716b6224742e7917aa3b0a5af967aa
SHA1 b7d5aa762f1dd0e7c9dad58c60c942a878ded9e0
SHA256 982146b2148ef67fcdacf7ad86589f230a1e5df32547c426c18e8af6a48d45ef
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/style.css?ver=1.4.0 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: text/css
last-modified: Fri, 09 Aug 2024 12:07:19 GMT
vary: Accept-Encoding
etag: W/"66b60677-118f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 13230
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/css/magnific-popup.css?ver=6.6.1
200 OK 1.8 kB URL
newztoday99.store/wp-content/themes/hitmag/css/magnific-popup.css?ver=6.6.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 6227
Size 1.8 kB (1816 bytes)
MD5 30b593b71d7672658f89bfea0ab360c9
SHA1 d6963db6faa9294387bb3175813a61bc3f859437
SHA256 45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/css/magnific-popup.css?ver=6.6.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: text/css
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
vary: Accept-Encoding
etag: W/"66b60676-1b27"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 1816
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 30 kB URL
newztoday99.store/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (65447)
First Seen 2023-11-03
Last Seen 2025-08-02
Times Seen 153880
Size 30 kB (30419 bytes)
MD5 826eb77e86b02ab7724fe3d0141ff87c
SHA1 79cd3587d565afe290076a8d36c31c305a573d18
SHA256 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: application/javascript
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
vary: Accept-Encoding
etag: W/"64ecd5ef-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 30419
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 4.9 kB URL
newztoday99.store/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (13479)
First Seen 2023-05-09
Last Seen 2025-08-02
Times Seen 159567
Size 4.9 kB (4872 bytes)
MD5 9ffeb32e2d9efbf8f70caabded242267
SHA1 3ad0c10e501ac2a9bfa18f9cd7e700219b378738
SHA256 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: application/javascript
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
vary: Accept-Encoding
etag: W/"6482bd64-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 4872
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/js/navigation.js?ver=1.4.0
200 OK 1.1 kB URL
newztoday99.store/wp-content/themes/hitmag/js/navigation.js?ver=1.4.0
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text
First Seen 2024-05-25
Last Seen 2025-08-02
Times Seen 556
Size 1.1 kB (1140 bytes)
MD5 d28ea8970c19b85c3fd0a81111faa37e
SHA1 49a37c20ac34c70c83e74258a23bc0d6bac576f1
SHA256 05d4182e11b7ac7e911581e98f7bec0b48ee0efe9799ededb98ec09b93f214ef
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/js/navigation.js?ver=1.4.0 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: application/javascript
last-modified: Fri, 09 Aug 2024 12:07:19 GMT
vary: Accept-Encoding
etag: W/"66b60677-af7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 1140
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=1.4.0
200 OK 416 B URL
newztoday99.store/wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=1.4.0
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 4263
Size 416 B (416 bytes)
MD5 75abd4cd8807b312f9f7faeb77ee774b
SHA1 e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7
SHA256 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=1.4.0 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: application/javascript
last-modified: Fri, 09 Aug 2024 12:07:19 GMT
vary: Accept-Encoding
etag: W/"66b60677-2ab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 416
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-includes/js/comment-reply.min.js?ver=6.6.1
200 OK 1.4 kB URL
newztoday99.store/wp-includes/js/comment-reply.min.js?ver=6.6.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text, with very long lines (2946)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 19319
Size 1.4 kB (1351 bytes)
MD5 492f2c1a7ea7eb83fe42e0ff7cb51aa2
SHA1 db36a77f6aaa2063bfbec02c2c0e967438c5a245
SHA256 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-includes/js/comment-reply.min.js?ver=6.6.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 13:51:43 GMT
vary: Accept-Encoding
etag: W/"667d6e6f-ba5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 1351
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/js/jquery.magnific-popup.min.js?ver=6.6.1
200 OK 7.3 kB URL
newztoday99.store/wp-content/themes/hitmag/js/jquery.magnific-popup.min.js?ver=6.6.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (20087)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 16864
Size 7.3 kB (7346 bytes)
MD5 ba6cf724c8bb1cf5b084e79ff230626e
SHA1 f455c5f153f872e52265f87a644ff89fe14a6fb6
SHA256 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/js/jquery.magnific-popup.min.js?ver=6.6.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: application/javascript
last-modified: Fri, 09 Aug 2024 12:07:19 GMT
vary: Accept-Encoding
etag: W/"66b60677-4ef8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 7346
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/js/scripts.js?ver=1.4.0
200 OK 761 B URL
newztoday99.store/wp-content/themes/hitmag/js/scripts.js?ver=1.4.0
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with CRLF line terminators
First Seen 2024-05-25
Last Seen 2025-08-02
Times Seen 557
Size 761 B (761 bytes)
MD5 fb555b33453096587d73d0208921ea38
SHA1 d316b2c666238d07345dfb5f8528c7944e1a0f89
SHA256 aa0e2f8db83fbe87d2b97f5b4acf5a61c6696ff2d0a99174af3edc30229742f0
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/js/scripts.js?ver=1.4.0 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:18 GMT
content-type: application/javascript
last-modified: Fri, 09 Aug 2024 12:07:19 GMT
vary: Accept-Encoding
etag: W/"66b60677-acf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
content-length: 761
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
504 B IP / ASN
23.36.76.226
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-18
Last Seen 2024-08-19
Times Seen 2
Size 504 B (504 bytes)
MD5 567c2f67b76f4c9a62082eaf29cb3a62
SHA1 74dd03471eb5726903d7e05e40dead1546c1b76d
SHA256 e7e44b9839aaf45aeb73bfb00d3ec95a4e0018a1efed22e5fc79b0ebcedb7de2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E7E44B9839AAF45AEB73BFB00D3EC95A4E0018A1EFED22E5FC79B0EBCEDB7DE2"
Last-Modified: Fri, 16 Aug 2024 08:36:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3859
Expires: Sun, 18 Aug 2024 15:15:33 GMT
Date: Sun, 18 Aug 2024 14:11:14 GMT
Connection: keep-alive
GET newztoday99.store/wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2
200 OK 29 kB URL
newztoday99.store/wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 29320, version 1.0
First Seen 2023-05-10
Last Seen 2025-08-02
Times Seen 769
Size 29 kB (29320 bytes)
MD5 523215f3b621ae9406e84e39e7976e67
SHA1 3ff9b171c3ccbd71c73121b803da01b62c033ed9
SHA256 78cfcd698660fe6904cdccf493e82f639a1a08707c35df07be4566e511bb04cc
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newztoday99.store/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:19 GMT
content-type: font/woff2
content-length: 29320
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
etag: "66b60676-7288"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/fonts/lato-regular-latin.woff2
200 OK 24 kB URL
newztoday99.store/wp-content/themes/hitmag/fonts/lato-regular-latin.woff2
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 56913
Size 24 kB (23580 bytes)
MD5 e1b3b5908c9cf23dfb2b9c52b9a023ab
SHA1 fcd4136085f2a03481d9958cc6793a5ed98e714c
SHA256 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/fonts/lato-regular-latin.woff2 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newztoday99.store/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:19 GMT
content-type: font/woff2
content-length: 23580
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
etag: "66b60676-5c1c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2
200 OK 19 kB URL
newztoday99.store/wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 18992, version 1.0
First Seen 2023-05-10
Last Seen 2025-08-02
Times Seen 759
Size 19 kB (18992 bytes)
MD5 8b1081927e10196dfa2642487a7b2e8c
SHA1 b9b32eabae814e96e10c20e43d87a5cafc4dc0d4
SHA256 c3980ea8f019855a578aef98e57530e78df585bce65b79b9f86a3356fa748bf3
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newztoday99.store/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:19 GMT
content-type: font/woff2
content-length: 18992
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
etag: "66b60676-4a30"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 655
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET controlaffliction.com/94eba58303673b12ea2ab0241d249bb0/invoke.js
200 OK 12 kB URL
controlaffliction.com/94eba58303673b12ea2ab0241d249bb0/invoke.js
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (30792), with no line terminators
First Seen 2024-08-15
Last Seen 2024-08-19
Times Seen 2
Size 12 kB (11937 bytes)
MD5 6e578aa24dcb668704d557a903ae4496
SHA1 9a371883e65f3b1c75433dae22eae0f13b47116a
SHA256 b9f65d5bc754040f3b8c9564a376070e6bd78edce6e4d8d3bb382ae2477d7fde
Certificate Info
Issuer Let's Encrypt
Subject controlaffliction.com
Fingerprint 71:09:2E:22:FF:4A:31:16:49:4B:DC:F5:0C:9B:3E:C0:DB:F8:D4:99
Validity Fri, 05 Jul 2024 14:56:56 GMT - Thu, 03 Oct 2024 14:56:55 GMT
GET /94eba58303673b12ea2ab0241d249bb0/invoke.js HTTP/1.1
Host: controlaffliction.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 18 Aug 2024 14:11:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 335d1487e0b1c55a02dbf3a08e878c2d
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-18
Last Seen 2024-08-21
Times Seen 37247
Size 504 B (504 bytes)
MD5 7944981bcac427aa8d0aa016ec63764d
SHA1 48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
SHA256 26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8822
Expires: Sun, 18 Aug 2024 16:38:17 GMT
Date: Sun, 18 Aug 2024 14:11:15 GMT
Connection: keep-alive
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-18
Last Seen 2024-08-21
Times Seen 37247
Size 504 B (504 bytes)
MD5 7944981bcac427aa8d0aa016ec63764d
SHA1 48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
SHA256 26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8822
Expires: Sun, 18 Aug 2024 16:38:17 GMT
Date: Sun, 18 Aug 2024 14:11:15 GMT
Connection: keep-alive
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-18
Last Seen 2024-08-21
Times Seen 37247
Size 504 B (504 bytes)
MD5 7944981bcac427aa8d0aa016ec63764d
SHA1 48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
SHA256 26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8822
Expires: Sun, 18 Aug 2024 16:38:17 GMT
Date: Sun, 18 Aug 2024 14:11:15 GMT
Connection: keep-alive
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-18
Last Seen 2024-08-21
Times Seen 37247
Size 504 B (504 bytes)
MD5 7944981bcac427aa8d0aa016ec63764d
SHA1 48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
SHA256 26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8822
Expires: Sun, 18 Aug 2024 16:38:17 GMT
Date: Sun, 18 Aug 2024 14:11:15 GMT
Connection: keep-alive
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-18
Last Seen 2024-08-21
Times Seen 37247
Size 504 B (504 bytes)
MD5 7944981bcac427aa8d0aa016ec63764d
SHA1 48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
SHA256 26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8822
Expires: Sun, 18 Aug 2024 16:38:17 GMT
Date: Sun, 18 Aug 2024 14:11:15 GMT
Connection: keep-alive
GET rznews777.store/wp-content/uploads/2024/08/455692602_814713697509384_7698623339303446901_n-735x400.jpg
200 OK 43 kB URL
rznews777.store/wp-content/uploads/2024/08/455692602_814713697509384_7698623339303446901_n-735x400.jpg
IP / ASN
63.250.43.146
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 735x400, components 3
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 43 kB (43099 bytes)
MD5 3204aa20742b9f421e7a71f549421478
SHA1 4fd39221bc1811e584cc328e7c01548ce58a9054
SHA256 f824e449da6bdfedf738258441c04631aec6e23db7fa049029933e2377396bc4
Certificate Info
Issuer Sectigo Limited
Subject rznews777.store
Fingerprint A5:57:2C:09:5F:10:2B:B5:8F:27:17:53:53:54:70:0B:A7:BE:C1:4D
Validity Wed, 17 Apr 2024 00:00:00 GMT - Thu, 17 Apr 2025 23:59:59 GMT
GET /wp-content/uploads/2024/08/455692602_814713697509384_7698623339303446901_n-735x400.jpg HTTP/1.1
Host: rznews777.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 13:51:31 GMT
content-type: image/jpeg
content-length: 43099
last-modified: Sun, 18 Aug 2024 02:04:48 GMT
etag: "66c156c0-a85b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 1183
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
471 B URL
ocsp.r2m03.amazontrust.com/
IP / ASN
143.204.53.97
#16509 AMAZON-02
Resource Info
File type data
First Seen 2024-08-17
Last Seen 2024-08-19
Times Seen 119
Size 471 B (471 bytes)
MD5 ecfb8f1d83b6f8c8c71e2cdd0d9560cb
SHA1 b9de0c6652450cec715dec07b98871d318f9a797
SHA256 ff0e676433c748b200f137224e4e0900517ce1ca93575b7f592a45183f9779cb
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 18 Aug 2024 14:11:15 GMT
Last-Modified: Sun, 18 Aug 2024 13:17:08 GMT
Server: ECAcc (ska/F7A7)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sEOAAyNbTOVlkbWeb_S-Gb_t8Kv0LVvEcRG1934NPqOd-99DIZeO7A==
Age: 3248
GET proftrafficcounter.com/stats
200 OK 40 B URL
proftrafficcounter.com/stats
IP / ASN
35.157.218.37
#16509 AMAZON-02
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text, with no line terminators
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 40 B (40 bytes)
MD5 346b187040eb642778acb25fe4384370
SHA1 8e5e5e0dd35f88baa8e6ef09812eb3af7e9f9123
SHA256 f1140790e265e04e77b7452efc01e8610f83507826b98f834aecb8673bf789ba
Certificate Info
Issuer Amazon
Subject proftrafficcounter.com
Fingerprint E3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
Validity Tue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
Origin: https://newztoday99.store
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Aug 2024 14:11:15 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://newztoday99.store
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2:1:1; expires=Wed, 16 Aug 2034 14:11:15 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
504 B IP / ASN
23.36.76.226
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-17
Last Seen 2024-08-21
Times Seen 61
Size 504 B (504 bytes)
MD5 7a3ece7ca905ac9d2fbf19628e150a31
SHA1 9832566108e362d0df9c8476f28afe0d46f9dd15
SHA256 23f5858c4ddbba8deb93fd3f6ce1316170e80cf35a25e6cfa260b7795a7219d6
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "23F5858C4DDBBA8DEB93FD3F6CE1316170E80CF35A25E6CFA260B7795A7219D6"
Last-Modified: Sat, 17 Aug 2024 01:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17123
Expires: Sun, 18 Aug 2024 18:56:38 GMT
Date: Sun, 18 Aug 2024 14:11:15 GMT
Connection: keep-alive
GET newztoday99.store/wp-content/themes/hitmag/fonts/fa-solid-900.woff2
200 OK 156 kB URL
newztoday99.store/wp-content/themes/hitmag/fonts/fa-solid-900.woff2
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 156496, version 773.768
First Seen 2023-12-02
Last Seen 2025-08-02
Times Seen 8923
Size 156 kB (156496 bytes)
MD5 6c4eee562650e53cee32496bdfbe534b
SHA1 1aae708e3b94ee981b452a918d28ed037fbb5e18
SHA256 9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/fonts/fa-solid-900.woff2 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newztoday99.store/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:17 GMT
content-type: font/woff2
content-length: 156496
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
etag: "66b60676-26350"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://newztoday99.store
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 658
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/fonts/lato-bold-latin.woff2
200 OK 23 kB URL
newztoday99.store/wp-content/themes/hitmag/fonts/lato-bold-latin.woff2
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 43558
Size 23 kB (23040 bytes)
MD5 de69cf9e514df447d1b0bb16f49d2457
SHA1 2ac78601179c3a63ba3f3f3081556b12ddcaf655
SHA256 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/fonts/lato-bold-latin.woff2 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newztoday99.store/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:17 GMT
content-type: font/woff2
content-length: 23040
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
etag: "66b60676-5a00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://newztoday99.store
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 658
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2
200 OK 24 kB URL
newztoday99.store/wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 7654
Size 24 kB (24408 bytes)
MD5 efee2d080d7bebdd2e0aeb2e030813a0
SHA1 f8d38f9f9584e48c2e469877ebd94232265585f1
SHA256 bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newztoday99.store/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:17 GMT
content-type: font/woff2
content-length: 24408
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
etag: "66b60676-5f58"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://newztoday99.store
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 658
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2
200 OK 29 kB URL
newztoday99.store/wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 28592, version 1.0
First Seen 2023-04-15
Last Seen 2025-08-02
Times Seen 696
Size 29 kB (28592 bytes)
MD5 a72bbb5a10e8ff13010604a1bb4a4037
SHA1 4accf5cfaa94279c6cfdf8cda1c75270e8278761
SHA256 c07bdac3cac751c087419fb7be13f75451845e648c0c67376ce388216693265c
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newztoday99.store/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:17 GMT
content-type: font/woff2
content-length: 28592
last-modified: Fri, 09 Aug 2024 12:07:18 GMT
etag: "66b60676-6fb0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://newztoday99.store
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 657
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET newztoday99.store/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1
200 OK 5.1 kB URL
newztoday99.store/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (15752)
First Seen 2024-03-13
Last Seen 2025-08-02
Times Seen 55136
Size 5.1 kB (5056 bytes)
MD5 b976b651932bfd25b9ddb5b7693d88a7
SHA1 7fcb7cb5c11227f9213b1e08a07d0212209e1432
SHA256 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6.1 HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 14:00:19 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 13:51:43 GMT
vary: Accept-Encoding
etag: W/"667d6e6f-4926"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 656
accept-ranges: bytes
x-cache: HIT
content-length: 5056
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET groinopposed.com/6a/41/56/6a415680c45197f832c0c82c53988ea5.js
200 OK 31 kB URL
groinopposed.com/6a/41/56/6a415680c45197f832c0c82c53988ea5.js
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 31 kB (31092 bytes)
MD5 9ebf989a35626f08db4fd6b9071d9fcb
SHA1 eea885ee63d43a0da7566d9925e0426381365096
SHA256 f6210c41fa4fff4d72633aba831c3c4f1687d8cd7ddb917df2b8787faf9630bc
Certificate Info
Issuer Let's Encrypt
Subject groinopposed.com
Fingerprint A8:39:B0:3D:12:3F:18:60:24:A8:25:9D:79:A0:94:09:FC:12:93:12
Validity Thu, 04 Jul 2024 09:21:19 GMT - Wed, 02 Oct 2024 09:21:18 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /6a/41/56/6a415680c45197f832c0c82c53988ea5.js HTTP/1.1
Host: groinopposed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 18 Aug 2024 14:11:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b14fc448a27c545de08dd8abe70f7fba
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET groinopposed.com/watch.866441803756.js?key=94eba58303673b12ea2ab0241d249bb0&kw=%5B%22entitled%22%2C%22passenger%22%2C%22spilled%22%2C%22his%22%2C%22drink%22%2C%22on%22%2C%22my%22%2C%22laptop%22%2C%22completely%22%2C%22ruining%22%2C%22it%22%2C%22%E2%80%93%22%2C%22karma%22%2C%22caught%22%2C%22up%22%2C%22with%22%2C%22him%22%2C%22as%22%2C%22soon%22%2C%22as%22%2C%22we%22%2C%22landed%22%2C%22%E2%80%93%22%2C%22newztoday99%22%2C%22store%22%5D&refer=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&tz=0&dev=e&res=14.2071&uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1
307 Temporary Redirect 0 B URL
groinopposed.com/watch.866441803756.js?key=94eba58303673b12ea2ab0241d249bb0&kw=%5B%22entitled%22%2C%22passenger%22%2C%22spilled%22%2C%22his%22%2C%22drink%22%2C%22on%22%2C%22my%22%2C%22laptop%22%2C%22completely%22%2C%22ruining%22%2C%22it%22%2C%22%E2%80%93%22%2C%22karma%22%2C%22caught%22%2C%22up%22%2C%22with%22%2C%22him%22%2C%22as%22%2C%22soon%22%2C%22as%22%2C%22we%22%2C%22landed%22%2C%22%E2%80%93%22%2C%22newztoday99%22%2C%22store%22%5D&refer=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&tz=0&dev=e&res=14.2071&uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://newztoday99.store/archives/526
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606712
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject groinopposed.com
Fingerprint A8:39:B0:3D:12:3F:18:60:24:A8:25:9D:79:A0:94:09:FC:12:93:12
Validity Thu, 04 Jul 2024 09:21:19 GMT - Wed, 02 Oct 2024 09:21:18 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.866441803756.js?key=94eba58303673b12ea2ab0241d249bb0&kw=%5B%22entitled%22%2C%22passenger%22%2C%22spilled%22%2C%22his%22%2C%22drink%22%2C%22on%22%2C%22my%22%2C%22laptop%22%2C%22completely%22%2C%22ruining%22%2C%22it%22%2C%22%E2%80%93%22%2C%22karma%22%2C%22caught%22%2C%22up%22%2C%22with%22%2C%22him%22%2C%22as%22%2C%22soon%22%2C%22as%22%2C%22we%22%2C%22landed%22%2C%22%E2%80%93%22%2C%22newztoday99%22%2C%22store%22%5D&refer=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&tz=0&dev=e&res=14.2071&uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1 HTTP/1.1
Host: groinopposed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
Origin: https://newztoday99.store
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 18 Aug 2024 14:11:15 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://newztoday99.store
Access-Control-Allow-Origin: https://newztoday99.store
Access-Control-Allow-Credentials: true
Location: https://groinopposed.com/watch.866441803756.js?dev=e&key=94eba58303673b12ea2ab0241d249bb0&kw=%5B%22entitled%22%2C%22passenger%22%2C%22spilled%22%2C%22his%22%2C%22drink%22%2C%22on%22%2C%22my%22%2C%22laptop%22%2C%22completely%22%2C%22ruining%22%2C%22it%22%2C%22%E2%80%93%22%2C%22karma%22%2C%22caught%22%2C%22up%22%2C%22with%22%2C%22him%22%2C%22as%22%2C%22soon%22%2C%22as%22%2C%22we%22%2C%22landed%22%2C%22%E2%80%93%22%2C%22newztoday99%22%2C%22store%22%5D&pst=1723990335&refer=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&res=14.2071&rmtc=t&shu=8ddf32a920e47e7932d1bb883e69cd3a8aa62d489ee43c94c1d3ba73576d58a0dded2139b2cbbfa577888a6a2feb7d62cade12af137e78b4d8d820ef415d7a27addf0e2acc933a7923664f09beb6d479d94f15fe37c865a56255e24e272539&tz=0&uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1
Set-Cookie: u_pl=23881470; expires=Mon, 19 Aug 2024 14:11:15 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.ffTLkUHyJexMI7f__lJWXXOOtW2m-kCfJBo3m7T_pgQ; expires=Sun, 18 Aug 2024 14:12:15 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 421c4857a544ce6817bc35e928db4132
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET t.dtscout.com/pv/?_a=v&_h=newztoday99.store&_ss=5645khtd0k&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=67bd&_cb=_dtspv.c
200 OK 557 B URL
t.dtscout.com/pv/?_a=v&_h=newztoday99.store&_ss=5645khtd0k&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=67bd&_cb=_dtspv.c
IP / ASN
141.101.120.10
#13335 CLOUDFLARENET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text, with no line terminators
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 557 B (557 bytes)
MD5 3549dc78fab86c1372fd71d08c9ddd83
SHA1 61b83d19dcf9eaff78fede336980b631084d00a9
SHA256 eb5ac6b4e5984949618cb957cd6cd5fa96443e7d288b885834a6e8ae63452af6
Certificate Info
Issuer Google Trust Services
Subject dtscout.com
Fingerprint E6:C9:A5:22:FF:46:D1:F8:B1:13:DA:0F:16:FD:0A:D0:73:4F:DA:40
Validity Sat, 13 Jul 2024 19:12:24 GMT - Fri, 11 Oct 2024 19:12:23 GMT
GET /pv/?_a=v&_h=newztoday99.store&_ss=5645khtd0k&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=67bd&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Cookie: m=1; df=1723990275
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Aug 2024 14:11:15 GMT
content-type: application/javascript
x-t: 0.185
x-c: 0
expires: Sun, 18 Aug 2024 14:11:14 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9%2BCJupwE5KQYygqvAARyqwv%2BYC2BDWboRlmpFzApKV5ixA0DUqppCVjtp9mD6Ek%2FtP8T05G26hzMHPzrz6rDAdyzxD5WmF8C4pXFVP1uGwuTDtHgB4Ve%2FgjUw7hRG8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b527df70ec68d70-HEL
content-encoding: br
X-Firefox-Spdy: h2
GET groinopposed.com/watch.866441803756.js?dev=e&key=94eba58303673b12ea2ab0241d249bb0&kw=%5B%22entitled%22%2C%22passenger%22%2C%22spilled%22%2C%22his%22%2C%22drink%22%2C%22on%22%2C%22my%22%2C%22laptop%22%2C%22completely%22%2C%22ruining%22%2C%22it%22%2C%22%E2%80%93%22%2C%22karma%22%2C%22caught%22%2C%22up%22%2C%22with%22%2C%22him%22%2C%22as%22%2C%22soon%22%2C%22as%22%2C%22we%22%2C%22landed%22%2C%22%E2%80%93%22%2C%22newztoday99%22%2C%22store%22%5D&pst=1723990335&refer=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&res=14.2071&rmtc=t&shu=8ddf32a920e47e7932d1bb883e69cd3a8aa62d489ee43c94c1d3ba73576d58a0dded2139b2cbbfa577888a6a2feb7d62cade12af137e78b4d8d820ef415d7a27addf0e2acc933a7923664f09beb6d479d94f15fe37c865a56255e24e272539&tz=0&uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1
200 OK 2.0 kB URL
groinopposed.com/watch.866441803756.js?dev=e&key=94eba58303673b12ea2ab0241d249bb0&kw=%5B%22entitled%22%2C%22passenger%22%2C%22spilled%22%2C%22his%22%2C%22drink%22%2C%22on%22%2C%22my%22%2C%22laptop%22%2C%22completely%22%2C%22ruining%22%2C%22it%22%2C%22%E2%80%93%22%2C%22karma%22%2C%22caught%22%2C%22up%22%2C%22with%22%2C%22him%22%2C%22as%22%2C%22soon%22%2C%22as%22%2C%22we%22%2C%22landed%22%2C%22%E2%80%93%22%2C%22newztoday99%22%2C%22store%22%5D&pst=1723990335&refer=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&res=14.2071&rmtc=t&shu=8ddf32a920e47e7932d1bb883e69cd3a8aa62d489ee43c94c1d3ba73576d58a0dded2139b2cbbfa577888a6a2feb7d62cade12af137e78b4d8d820ef415d7a27addf0e2acc933a7923664f09beb6d479d94f15fe37c865a56255e24e272539&tz=0&uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (2484)
First Seen 2024-08-19
Last Seen 2024-08-19
Times Seen 1
Size 2.0 kB (2028 bytes)
MD5 048e9684a1313568e3155bdf67163aa7
SHA1 97c593f8586bc2203b11ab3ce2c24b856ee53c21
SHA256 0c62c24b93049e15761dbb60bd66c951c941d5e37606e0abb55e938cde01e012
Certificate Info
Issuer Let's Encrypt
Subject groinopposed.com
Fingerprint A8:39:B0:3D:12:3F:18:60:24:A8:25:9D:79:A0:94:09:FC:12:93:12
Validity Thu, 04 Jul 2024 09:21:19 GMT - Wed, 02 Oct 2024 09:21:18 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.866441803756.js?dev=e&key=94eba58303673b12ea2ab0241d249bb0&kw=%5B%22entitled%22%2C%22passenger%22%2C%22spilled%22%2C%22his%22%2C%22drink%22%2C%22on%22%2C%22my%22%2C%22laptop%22%2C%22completely%22%2C%22ruining%22%2C%22it%22%2C%22%E2%80%93%22%2C%22karma%22%2C%22caught%22%2C%22up%22%2C%22with%22%2C%22him%22%2C%22as%22%2C%22soon%22%2C%22as%22%2C%22we%22%2C%22landed%22%2C%22%E2%80%93%22%2C%22newztoday99%22%2C%22store%22%5D&pst=1723990335&refer=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&res=14.2071&rmtc=t&shu=8ddf32a920e47e7932d1bb883e69cd3a8aa62d489ee43c94c1d3ba73576d58a0dded2139b2cbbfa577888a6a2feb7d62cade12af137e78b4d8d820ef415d7a27addf0e2acc933a7923664f09beb6d479d94f15fe37c865a56255e24e272539&tz=0&uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1 HTTP/1.1
Host: groinopposed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newztoday99.store
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Cookie: u_pl=23881470; ain=eyJhbGciOiJIUzI1NiJ9.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.ffTLkUHyJexMI7f__lJWXXOOtW2m-kCfJBo3m7T_pgQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 18 Aug 2024 14:11:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://newztoday99.store
Access-Control-Allow-Origin: https://newztoday99.store
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2:1:1; expires=Sun, 25 Aug 2024 14:11:15 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 19 Aug 2024 14:11:15 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 19 Aug 2024 14:11:15 GMT; path=/; secure; SameSite=None
pdhtkv23=true; expires=Mon, 19 Aug 2024 14:11:15 GMT; path=/; secure; SameSite=None
uncs23=1; expires=Mon, 19 Aug 2024 14:11:15 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: ed9ba5b2058c83f957ec3b94c7c18059
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
504 B IP / ASN
23.36.76.226
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-17
Last Seen 2024-08-19
Times Seen 56
Size 504 B (504 bytes)
MD5 6a5dc19f4e051425a9d33aff52f496f6
SHA1 920403da652028daadc593b70d126c07f3ab7439
SHA256 504e3a5ec27fe0ea5cb89ce4e296fcf1a1054cf193df945b973fca6f11bb47d2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "504E3A5EC27FE0EA5CB89CE4E296FCF1A1054CF193DF945B973FCA6F11BB47D2"
Last-Modified: Fri, 16 Aug 2024 07:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8354
Expires: Sun, 18 Aug 2024 16:30:30 GMT
Date: Sun, 18 Aug 2024 14:11:16 GMT
Connection: keep-alive
GET cdn.cloudimagesb.com/cti/80/c6/99/80c6995878998246b6018519748dc7cd/1708270668.jpg
200 OK 79 kB URL
cdn.cloudimagesb.com/cti/80/c6/99/80c6995878998246b6018519748dc7cd/1708270668.jpg
IP / ASN
45.133.44.9
#39572 DataWeb Global Group B.V.
Requested by https://newztoday99.store/archives/526
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 14:58:01], progressive, precision 8, 728x90, components 3
First Seen 2024-02-20
Last Seen 2025-07-29
Times Seen 636
Size 79 kB (79356 bytes)
MD5 55ed59e5d7a388b1e733a86d7b654fa4
SHA1 b3316451e0932734d60d343bb2c3939d5dd3d983
SHA256 805f37a36d50e7437b87cc31eb8287395f62034b1ba796285c73fd669f74cc4e
Certificate Info
Issuer Let's Encrypt
Subject cdn.cloudimagesb.com
Fingerprint C4:E5:6E:E8:15:37:9B:58:9E:AA:84:E9:B0:65:53:C9:88:43:C1:59
Validity Sat, 20 Jul 2024 04:00:43 GMT - Fri, 18 Oct 2024 04:00:42 GMT
GET /cti/80/c6/99/80c6995878998246b6018519748dc7cd/1708270668.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Aug 2024 14:11:16 GMT
content-type: image/jpeg
content-length: 79356
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:37:56 GMT
etag: "65d22454-135fc"
expires: Tue, 20 Aug 2024 14:11:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ds5859
accept-ranges: bytes
X-Firefox-Spdy: h2
GET softenedcollar.com/pixel/purst?dl=0&th=0&sc=0&rs=2565&rd=2565&fd=554&bv=24.8.8248&tmpl=136
200 OK 0 B URL
softenedcollar.com/pixel/purst?dl=0&th=0&sc=0&rs=2565&rd=2565&fd=554&bv=24.8.8248&tmpl=136
IP / ASN
192.243.59.12
#39572 DataWeb Global Group B.V.
Requested by https://newztoday99.store/archives/526
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606712
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject softenedcollar.com
Fingerprint 78:F9:34:B9:DC:C5:CA:E3:77:61:C8:FC:4E:DF:55:AD:DD:ED:F5:81
Validity Thu, 01 Aug 2024 14:39:08 GMT - Wed, 30 Oct 2024 14:39:07 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2565&rd=2565&fd=554&bv=24.8.8248&tmpl=136 HTTP/1.1
Host: softenedcollar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Aug 2024 14:11:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET newztoday99.store/favicon.ico
204 No Content 0 B URL
newztoday99.store/favicon.ico
IP / ASN
63.250.43.8
#22612 NAMECHEAP-NET
Requested by https://newztoday99.store/archives/526
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606712
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject newztoday99.store
Fingerprint 7E:0F:70:45:0E:F8:9B:4E:9E:F8:86:13:BD:2D:23:52:1A:9A:F1:31
Validity Sat, 10 Aug 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: newztoday99.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/archives/526
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 18 Aug 2024 14:00:20 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-type: image/png
age: 655
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
504 B IP / ASN
23.36.77.32
#20940 Akamai International B.V.
Resource Info
File type data
First Seen 2024-08-16
Last Seen 2024-08-19
Times Seen 117
Size 504 B (504 bytes)
MD5 1a2715d8eba4dfc314203de1db46185e
SHA1 4c976fa1cfd3f5629e7125a9ae2f370350d52123
SHA256 4b56e66f230a1ed9914bc556b52093baa825b29e735fd1867752dce40640f687
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4B56E66F230A1ED9914BC556B52093BAA825B29E735FD1867752DCE40640F687"
Last-Modified: Fri, 16 Aug 2024 07:24:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19707
Expires: Sun, 18 Aug 2024 19:39:43 GMT
Date: Sun, 18 Aug 2024 14:11:16 GMT
Connection: keep-alive
GET unseenreport.com/pxf.gif?uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6a415680c45197f832c0c82c53988ea5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14
200 OK 1 B URL
unseenreport.com/pxf.gif?uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6a415680c45197f832c0c82c53988ea5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://newztoday99.store/archives/526
Resource Info
File type very short file (no magic)
First Seen 2023-04-05
Last Seen 2025-07-31
Times Seen 25187
Size 1 B (1 bytes)
MD5 93b885adfe0da089cdf634904fd59f71
SHA1 5ba93c9db0cff93f52b521d7420e43f6eda2784f
SHA256 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Certificate Info
Issuer Let's Encrypt
Subject *.unseenreport.com
Fingerprint D9:3D:28:C1:14:1B:2B:53:0E:E4:3E:FC:88:7A:FF:9C:45:4B:63:C7
Validity Sat, 20 Jul 2024 14:59:20 GMT - Fri, 18 Oct 2024 14:59:19 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=98a07c22-3fe4-45ae-9a8a-ac6854ae7ba2&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6a415680c45197f832c0c82c53988ea5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 18 Aug 2024 14:11:16 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f7fc14705e7a30e8831b1336340f29ca
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET t.dtscout.com/i/?l=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&j=
200 OK 10 kB URL
t.dtscout.com/i/?l=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&j=
IP / ASN
141.101.120.10
#13335 CLOUDFLARENET
Requested by https://newztoday99.store/archives/526
Resource Info
File type ASCII text, with very long lines (2077)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 4882
Size 10 kB (10505 bytes)
MD5 51bd741af3fcc4984d1a753eebfa1141
SHA1 534664acf69cbbb5c9b97c96b63dd37bdc580da2
SHA256 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c
Certificate Info
Issuer Google Trust Services
Subject dtscout.com
Fingerprint E6:C9:A5:22:FF:46:D1:F8:B1:13:DA:0F:16:FD:0A:D0:73:4F:DA:40
Validity Sat, 13 Jul 2024 19:12:24 GMT - Fri, 11 Oct 2024 19:12:23 GMT
GET /i/?l=https%3A%2F%2Fnewztoday99.store%2Farchives%2F526&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Aug 2024 14:11:15 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Sun, 18-Aug-2024 15:34:35 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
df=1723990275; Domain=dtscout.com; Expires=Tue, 26-Nov-2024 14:11:15 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.279
expires: Sun, 18 Aug 2024 14:11:14 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SWFcipgvGDYaubtFEJQoKgGjDBYQs8%2Bd5xW37eElCOuRn5LqdO4okLxmM3U6VkF09sI7wwXvvK77uWmT%2F8U7zCCrNHExV16w7%2F8VMnMwBBqKTssvY2cRQB2hMBG0X64%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b527df52d398d70-HEL
content-encoding: br
X-Firefox-Spdy: h2
GET waust.at/d.js
200 OK 15 kB IP / ASN
104.26.4.7
#13335 CLOUDFLARENET
Requested by https://newztoday99.store/archives/526
Resource Info
File type JavaScript source, ASCII text, with very long lines (14706), with no line terminators
First Seen 2023-03-08
Last Seen 2025-04-10
Times Seen 1874
Size 15 kB (14706 bytes)
MD5 38cdedd658fa41770f607c0b117c1f82
SHA1 3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4
SHA256 951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c
Certificate Info
Issuer Google Trust Services
Subject waust.at
Fingerprint 23:97:A9:BF:8A:3F:8F:7E:DD:39:FB:28:55:22:37:0A:6E:8E:9F:1B
Validity Tue, 02 Jul 2024 02:16:40 GMT - Mon, 30 Sep 2024 02:16:39 GMT
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Aug 2024 14:11:14 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:17 GMT
etag: W/"63c04115-3972"
expires: Mon, 19 Aug 2024 13:35:43 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2131
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tpz9GC%2FBZKnVDs%2FkCKGhBKp2MytdZE8bpYm8uuXVfT7%2Bv7c3nZxfl%2FJemWJUlPygZVEaKSsLOZxof15IyFgBbvQqluif1cjWwoWxB7yGg3GhNa0IYyEo7DRu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b527dee8b8756b4-OSL
X-Firefox-Spdy: h2
GET recordedthereby.com/sfp.js
200 OK 85 kB URL
recordedthereby.com/sfp.js
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by https://newztoday99.store/archives/526
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606712
Size 85 kB (85378 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject recordedthereby.com
Fingerprint A1:CB:3E:AF:CE:F5:E9:D2:26:FB:E2:D4:FE:4B:29:D2:B3:C9:AD:3B
Validity Sat, 06 Jul 2024 15:25:15 GMT - Fri, 04 Oct 2024 15:25:14 GMT
GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newztoday99.store/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Aug 2024 14:11:15 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, max-age=0, private, no-cache
x-request-id: 4f2209bf299ca8474c549a860d157426
pragma: no-cache
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w%2BygneQSNg2dQCNZ%2BOQkEW08FnNCCBNnCEIEv7mSJiEmbKI2FXmLtdsVHUX140vQRJeNZHlImjI8aST0hp3dszWVuVQEEzr3NqdBieKRF7l0Iu8ZPMyWyli%2Fo8NIBbV6%2BTGJ7ZWO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b527df75b48568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
