newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-1.jpg
172.67.148.132 25 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-1.jpg
IP 172.67.148.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 567x480, components 3\012- data
Hash 86aac2e98005bc504b2c3e942a7a1a89
d28d646a8043df63d97d0af9eae584046df9de51
f4c8e72e50c9127a57d69a04d85358b2cbd3a305762af26e529349d227e6ca01
GET /penirum-let-mechtayut-v3-sa/files/images/content-1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 24597
last-modified: Wed, 07 Jul 2021 07:47:09 GMT
etag: "60e55bfd-6015"
expires: Wed, 24 May 2023 10:22:04 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yZW3%2BSumKDOLYw1uxT46lG1qm0kEir8lTQsn10cJ649VrA2sKOWBX5AJeDI%2FjdhefAjciSnHoJLyQM%2FZKmdKnFEljgMBT%2BdwfqcONgn7Q54bRfzJDm6xM7fBkTI2cWK%2FueA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc39a9fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-2.jpg
172.67.148.132 19 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-2.jpg
IP 172.67.148.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 601x437, components 3\012- data
Hash 1673b7ada74ab8d1fa0125256939e824
f893fa9c5365a90e92b1c34c0868b84cd68de2eb
9d1b2ba6a5edf09b414194765b00547b4fe9b97fdf3fbd43beaa7fe5f2eab043
GET /penirum-let-mechtayut-v3-sa/files/images/content-2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 18947
last-modified: Wed, 07 Jul 2021 07:47:09 GMT
etag: "60e55bfd-4a03"
expires: Wed, 24 May 2023 10:22:05 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=REGD%2F%2Fkkm7e0cHmNv6qhoKTla9dVOmydJGW%2FhUATnwWUhWje4T%2F1AIoFhCilAEt97WHNlPJ%2BdY5zsObUD%2F25qAPv1TDqunNJxvhbVUG5vAOKUVhL9h%2FrYCUmdRAq6SYy6W4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59c8fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/2.jpg
172.67.148.132 2.0 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/2.jpg
IP 172.67.148.132:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 8f3eaf68ee7f8fbacd7e7dc55eca8ad1
11f1c4017e5171e63e8f92ace82b03f606688851
0e6c19c1698051717a9f58a20fa3d781a83b7095ab18d61edff3268d29c89d1e
GET /penirum-let-mechtayut-v3-sa/files/images/2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2018
last-modified: Wed, 07 Jul 2021 07:47:07 GMT
etag: "60e55bfb-7e2"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s4opj8NgNTXM2nvwquvjAvV8Ylvlb6%2FaY7ekANYuHHbQRYP%2B026%2FLNQyk8nw7g2fkIT3MDVkpElDHZEIKy9WSeksTg8zdx995FgmpwvN92MT%2F%2BgslFjHGyCwTV7mkcacCq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59d8fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
polyfill.io/v3/polyfill.min.js
151.101.1.26200 OK 113 B URL GET HTTP/2 polyfill.io/v3/polyfill.min.js
IP 151.101.1.26:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGlobalSign nv-sa
Subjectpolyfill.io
FingerprintCC:EC:67:62:0C:35:B1:49:2F:28:55:33:F4:F0:49:CD:3F:88:CC:3B
ValiditySat, 10 Dec 2022 19:50:06 GMT - Thu, 11 Jan 2024 19:50:05 GMT
Hash 66a7d2a5dd73e9fca370d85360c85447
2e4ca9cb2ed0fcd0436ee10516b2bb441fc16a63
d7f817255acac24d24766a420471f23c0796b5228b84f8432bf70570ed870b72
GET /v3/polyfill.min.js HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
fastly_service_version: 195
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=UTF-8
last-modified: Wed, 03 May 2023 00:17:37 GMT
useragent_normaliser: firefox/111.0.0
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
referrer-policy: origin-when-cross-origin
timing-allow-origin: *
normalized-user-agent: firefox/111.0.0
detected-user-agent: Firefox/111.0.
accept-ranges: bytes
date: Wed, 24 May 2023 05:52:30 GMT
age: 1315899
vary: User-Agent, Accept-Encoding
server-timing: HIT, fastly;desc="Edge time";dur=1
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 113
X-Firefox-Spdy: h2
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-4.jpg
172.67.148.132 21 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-4.jpg
IP 172.67.148.132:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 626x343, components 3\012- data
Hash bc71dfef928ab3117c7d99b701820ec7
1bd464c40f2f626f335f59b3f2d31f0ec33375b2
6536285db843d581d869858d8913c4ec608f49a59d4200c5af369e734462ddfb
GET /penirum-let-mechtayut-v3-sa/files/images/content-4.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 20741
last-modified: Wed, 07 Jul 2021 07:47:10 GMT
etag: "60e55bfe-5105"
expires: Wed, 24 May 2023 10:03:03 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h%2BpaOTHko%2BpHs73NbpOsnGbu2kIsDFaZhuWTO32MFrFLvt84oYNBySgDKh8wz3%2BE2%2BjmHgkxhTQ6zaGaLGDwl3jftopYI2wCKB9GB6IJJXevnBJvbWbr1z966Qz%2B%2BIbkbM0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59c6fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/prizewheel.png
172.67.148.132200 OK 19 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/prizewheel.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data
Hash a197435ca6717bf859377fef3b88b0e4
92fda80220d75ca2dd0b466ccef1d44c951ece0d
4228d0dc4105eabb5862cf67fa490f60d05332652b9bebd48cc0ce8c51ba5ce7
GET /penirum-let-mechtayut-v3-sa/files/images/prizewheel.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/png
content-length: 18755
last-modified: Wed, 07 Jul 2021 07:47:11 GMT
etag: "60e55bff-4943"
expires: Wed, 24 May 2023 10:22:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rzjNPF5oF4%2BJ34HrxyPYDLNOxYuoE0J7mA6bn4YQPeuoNgor0xCiyKV8mdBcEQX4oNpQWWUBosUICpgZJlOE2WYGTxjCdLDr9%2Fo5ZbzMOe6PsjDgqcwzLhcoUIqN1GHyjLA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59cafab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/1.jpg
172.67.148.132200 OK 2.2 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/1.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash f72e5c9c906b1176fdae9107e69b8073
7788c1b7e64f91e0324eace45c035dbfd5cba0c9
c820cce147048bbe54f597c9996d7d8de91245dec881cb12a791df217c56c413
GET /penirum-let-mechtayut-v3-sa/files/images/1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2190
last-modified: Wed, 07 Jul 2021 07:47:06 GMT
etag: "60e55bfa-88e"
expires: Wed, 24 May 2023 10:22:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Rsh8Xm2vbef1maQPgILYHQh3gUb7cWT4t0rMQmpjsmZBOHsYYOFMm43cKm4kH6Yq%2BYtKQPEDS7VYijCvtcD70VPhjXuGnCkJUv9uFn%2FMrIpj5dVFrRUzwcBqg%2FHsg9xlfo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59d7fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-3.jpg
172.67.148.132 47 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/content-3.jpg
IP 172.67.148.132:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 580x484, components 3\012- data
Hash 7472e0f2bafe501443d46b51aee4b3e8
92b6e751e3bfdebeb9a607fcce8dc6654457d602
4728991ceab467ac5a9149bd656297cec6bdcdc378fcd1dd67da7c1903acb96e
GET /penirum-let-mechtayut-v3-sa/files/images/content-3.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 47221
last-modified: Wed, 07 Jul 2021 07:47:10 GMT
etag: "60e55bfe-b875"
expires: Wed, 24 May 2023 10:22:05 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fizNcxI3izh4DAVc2mPPQYYF7rgz%2BcLOMZSqUaqWn2BbvyAhXzNnYCg%2Bwxarfx8BaXPihBP%2BsyJ3HjCSvzqLdySUBgrmVin0%2BBCmkSAbGgm%2FoMM%2B9ySZF7KPCdUfB4gqfX8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59cbfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/wheel-cursor.png
172.67.148.132200 OK 2.5 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/wheel-cursor.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 158 x 158, 8-bit colormap, non-interlaced\012- data
Hash 619d2440c3deaa1a0259497fcf031230
ef05e68d91e9680ee356c94d53b33a3595ee220a
39a06b6a561b9c1e915b5563b991eb40fe0f592b2a637c0d73e864cda93b71cc
GET /penirum-let-mechtayut-v3-sa/files/images/wheel-cursor.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/png
content-length: 2531
last-modified: Wed, 07 Jul 2021 07:47:12 GMT
etag: "60e55c00-9e3"
expires: Thu, 25 May 2023 02:58:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BcIHlg8jufvGEFB1nzXnBYplpV0wdr4JCaLF2v2t0Rrw%2Bj%2FyERNCES3IdZ3kvvw8FhDj8MhVMR5XrtgRAGHtItSTcNDmb7aB2%2BjeW4DFX2sEQJ5AxiUkH17C7S7cAcjkqRQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59cdfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/3.jpg
172.67.148.132200 OK 2.4 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/3.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 8cd2c900f65b430bc2214f58310920b9
a52fce193e669880b25002407d4a966dae4782e6
b568f824c41200042d4228a37758669f94f8b6addacd0a9b02fba26440c8752f
GET /penirum-let-mechtayut-v3-sa/files/images/3.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2447
last-modified: Wed, 07 Jul 2021 07:47:08 GMT
etag: "60e55bfc-98f"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BIAsZm9vb9GK2jiQ0twXA8Q3cxP%2F2FEtsptHhLhjQWwjnMd3EykR9oxNREbg7LD4KbajjTWa0nO1oqSgF9%2BcVkuz3WgF0cta73PoOIGP3J1EaSQowlWpMPHSnqpw7%2FHi0TY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59dafab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/4.jpg
172.67.148.132200 OK 3.1 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/4.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6c30ba247ae62bb2b8a63579afc6f6ab
9cb31b3d4a757e2d9587f3a8eb335e6b4b8b6876
6e808df2d16f868bd2d1838fcd609b5ba1f7aa511986231b3275b1c0d957e5f9
GET /penirum-let-mechtayut-v3-sa/files/images/4.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 3133
last-modified: Wed, 07 Jul 2021 07:47:08 GMT
etag: "60e55bfc-c3d"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DtjaacUtFxGgw7ZYSoGwsJJAe527b55oaQrHcVX3%2FDgFEX8XAGmfSNxBAPM8kReWH2tKygkeQbqZZq%2BWF5AEMCPtwcwXaqUznTZZECKT1bqt5XjxK%2FYRzM1I%2FIDHSd8X%2B0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59ddfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/5.jpg
172.67.148.132200 OK 3.6 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/5.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash d3aac85992ae50ba03b88528e9194e66
0de47226ed621d4fac2e979990431a30b64c0dc8
24b15feb6921a6fd9a6a212fd8ae9ceb115b6a39bfc5a5d9279e983d649947c2
GET /penirum-let-mechtayut-v3-sa/files/images/5.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 3631
last-modified: Wed, 07 Jul 2021 07:47:08 GMT
etag: "60e55bfc-e2f"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u09XXD%2FmqmdZlyJpgiLdQ9HlSG4MMtwptBgmNrv1TN4fjwACJRHQSpumNPHR4GPII427QIwJwOYgo3Kd5QCCggNwDPlTbcrJox7IzEVnTWi3%2B8%2FAQvv6URmYdsbiBG4FXi0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc79fdfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/6.jpg
172.67.148.132200 OK 2.9 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/6.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 31beb1ced7692c9733b3c4e7168744b9
25d500f980f326c656aa633bd0a84c24bf7474fe
87162569dc8a35ca5639a5d9440e058beb47975c2a6f731612e9b25633575e94
GET /penirum-let-mechtayut-v3-sa/files/images/6.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2871
last-modified: Wed, 07 Jul 2021 07:47:08 GMT
etag: "60e55bfc-b37"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ieEleyygOdG9bCXujjVs2GfJg82PtBSjldLayVVHgKbHNpYjHJHJ8NvYpMo2sqyLQ%2BMgydBCismz2%2FhX6yfOB2zWl1pZbGOkLCSO6yQrBakUn09HBZGZW7pnijxI7Bnw5lI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc79fffab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/7.jpg
172.67.148.132200 OK 2.8 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/7.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 90x90, components 3\012- data
Hash 7bd9e43fa7f78509eb42c4777b758e7b
0ce2cd497faaa4dcd763ea1d708f2614322307c4
bab693ddb3b01f2a5b2cf2c9dd43f319a64b99ba8b04f456b26fcbb2a411b32e
GET /penirum-let-mechtayut-v3-sa/files/images/7.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2804
last-modified: Wed, 07 Jul 2021 07:47:08 GMT
etag: "60e55bfc-af4"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lfsWLZI%2FFseyaq%2FelrUlGsONmD%2FvcfyO69Tzrk9%2BYnxGnl0DRsn2%2F0fE1QbkjqCkiyaBWZhajPwCEMoztPNvZ63fdMCiTUNzGi6qMdcD1xVy978%2BMt4Ox5mOJiSlI3loOM0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc79fbfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/8.jpg
172.67.148.132200 OK 5.1 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/8.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 0859d1f611890fd5885d67f7ddd8ab40
84f51c16d29cb9c96e23b5beb6bf6f926a9cba26
619ee6f51955e0f5df6875e6a7ad44c5031eb4e431b5b78e8234b5567e44e665
GET /penirum-let-mechtayut-v3-sa/files/images/8.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 5144
last-modified: Wed, 07 Jul 2021 07:47:09 GMT
etag: "60e55bfd-1418"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FMaYct%2BMzEzYgtO61q3T1xTeLv09Znn4DDsKAHtRgItFiKNqvp3LJ5J7SwYYgGo6OVcJ7cnM%2F9yWRDu6%2FPk%2BQ%2BpZX8%2BrpbPvcSjh3NzuRWxmQntV0T1umMeSQgn4mGzWcxc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc79fefab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/9.jpg
172.67.148.132200 OK 2.5 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/9.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash b1e6998a50a8866f2eacaf42fca28b85
f216bea467e62cd4414a7894fabaa191fa9f164d
856c19edd24747ba04e32e21d6c98d1d4361907a960ea6ffe360001dc369dd66
GET /penirum-let-mechtayut-v3-sa/files/images/9.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2511
last-modified: Wed, 07 Jul 2021 07:47:09 GMT
etag: "60e55bfd-9cf"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8kEkdltZdqiooZqksL%2FDs%2BGHhYUlE1dSPRlJBqxnXu9dgGoKd2kf0lWErLfNObY%2FqVgaRjPlIKeNGrauTgiWnAV1B5AEcij85wA%2BEFj8P4xNYS%2FSf1ufzwrfEXw6QNX4NRw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc7a00fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/10.jpg
172.67.148.132200 OK 2.7 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/10.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash ae33ef0b01d1d538a4c2e5193855b433
57b7c9fb8400089851f735dad1e74cfa8c14ca65
5c6ed28ad7ec01d6255bf5f4416de8e615a27408de84e1de2f2a679fffd7d1d3
GET /penirum-let-mechtayut-v3-sa/files/images/10.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2693
last-modified: Wed, 07 Jul 2021 07:47:06 GMT
etag: "60e55bfa-a85"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3KsoKHG3WK41OdkSxIdqDiaIkb9bg%2Fkm1yGLcLFdpDXUC5dVc4tfUXidzbsT8RB8ox7GXlE1ns9PVTrmfGlhL13k0EmV%2Bf0qC24KqGJsiaoa2fsFIeDFSF1KNFAMFUHJeGM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc7a06fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/11.jpg
172.67.148.132200 OK 1.9 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/11.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 90x90, components 3\012- data
Hash 91df093c329b836a15035f53fb9f77c2
360076623138a980ff01fdcbf7d04fc736b95828
a3603e5dbe87baef584d3d171b4019df038eb7bf0baa0c13799175026e0b6cd8
GET /penirum-let-mechtayut-v3-sa/files/images/11.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 1904
last-modified: Wed, 07 Jul 2021 07:47:07 GMT
etag: "60e55bfb-770"
expires: Thu, 25 May 2023 05:33:15 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UXVHPKAJTbFRb0UNFtnrEfj%2B5o3QlZmIs3aAhThn5ofe8YGwtc7AgJ%2BXDDnE6HVsXlAZdhgd%2BLpzG%2FPWQMezlyqdGOPcYqP2D2PfsibK3EgZMTVOJfpbWlqehjIp7WbhEjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc7a04fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/12.jpg
172.67.148.132 1.9 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/12.jpg
IP 172.67.148.132:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 90x90, components 3\012- data
Hash 1d54ef7b1ba866a749a693d79eea5b82
46a58d167b2d73a8b464412f58b61350454b7409
937cd0ecdcf77d5cd5c4bd0416e20965f6479264ba367bffd02b2b5b919d2215
GET /penirum-let-mechtayut-v3-sa/files/images/12.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 1909
last-modified: Wed, 07 Jul 2021 07:47:07 GMT
etag: "60e55bfb-775"
expires: Thu, 25 May 2023 05:33:15 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KsqbN8LgeuKJlEG9ScZwCct2tfgtSxLFaoSm3TDP%2FWNaQV6rMIVfDbDRvnCo8NNmJJ%2B9EyOBo300F4h0KOUPmgoZNgSrysYsFQAxvFy37HY5U%2BDUlHPFqd9ngvCvImtD6HM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc7a05fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/13.jpg
172.67.148.132200 OK 2.1 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/13.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 90x90, components 3\012- data
Hash 25f548feae6d8ccab6110d4e05016a45
b875490d41a71288987793e87100cd37cb3a6179
153d25749952f8a5a615c173086215217a81f5f61f7229febaa89b223385cc8d
GET /penirum-let-mechtayut-v3-sa/files/images/13.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2060
last-modified: Wed, 07 Jul 2021 07:47:07 GMT
etag: "60e55bfb-80c"
expires: Wed, 24 May 2023 13:11:21 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jLjtyS3ynW8RZVXuDhmydYYg4avCipo%2FDnrboThAJcM5e65MZNyvX8KfSTzOpFYAkFOW9JGhmRh1vJS%2Bl%2BmK8Gg%2BxB7zK%2FI939qJYKvI2NUJkKRM3VUAPXFDv%2FRowsYzBdQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc7a03fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/14.jpg
172.67.148.132200 OK 2.2 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/14.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 90x90, components 3\012- data
Hash d8f190ddf6c9815abdd5004b7d62a888
2467a096df0295a3dfb4e8d84da60c0de7199cc2
a411acb9f05eae85134db76e1a9055d8073540ffcf140cfe6413798658f71d8c
GET /penirum-let-mechtayut-v3-sa/files/images/14.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 2188
last-modified: Wed, 07 Jul 2021 07:47:07 GMT
etag: "60e55bfb-88c"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0A38%2FKEA%2FFJT6P9VVR35KGN5cHpzVxk0M7oL%2BsDFy0lEY%2FpALo22e9w1V3vVrX79q8swJO6G4H746FuD77qgGcf8zKLS27ihsSlCYFDBqiuyNMB2P9q7S5NHgCIZzLHTht4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc7a07fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/15.jpg
172.67.148.132200 OK 3.4 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/15.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 155bb9650016ec54a510ef70a0a3d43d
7d3b60d885da2f7f0c8d248dff7a7fec24674961
fdcf845b67de88edef5bdb9bfe8ffa390339bc8815910947e60eac89589f610e
GET /penirum-let-mechtayut-v3-sa/files/images/15.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/jpeg
content-length: 3387
last-modified: Wed, 07 Jul 2021 07:47:07 GMT
etag: "60e55bfb-d3b"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TujQC%2BvfiKZdgiQLYgIggkc8HURXqp%2B1gsgyv4Zwn1YhRN35NxkNWoolBB0zQcjf4Ru8gYA0oM5r6U4QKN5eTBXZg6MyZCnY8C46681jJwu4lH%2BZHEuSir4txhRXgzcekp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc7a08fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.138200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.138:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (32180)
Hash 32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:11:44 GMT
expires: Tue, 21 May 2024 16:11:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 135646
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/tov.png
172.67.148.132 70 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/tov.png
IP 172.67.148.132:0
File type PNG image data, 350 x 272, 8-bit/color RGBA, non-interlaced\012- data
Hash e5b3f35fdc7d783b5dce108a046832c1
7e52184e24e640c56023cbbaed205a7e8358ef4a
40143440c5d05b2434b8d982af88c30b9f77487431db4f3f86b8a59a653cb2e9
GET /penirum-let-mechtayut-v3-sa/files/images/tov.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: image/png
content-length: 70316
last-modified: Tue, 17 Jan 2023 04:03:32 GMT
etag: "63c61e14-112ac"
expires: Wed, 24 May 2023 10:22:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5jdsMdnOmrMBtiuMlRffGtJDCN2czlHD0bBkpAy2VeF7%2BJcWR%2Byh7dqYHnfzxEWEr3SSjBEeXtVTz8FNH4ZznaK0CtcytmCuO576UnKqAJUZA3gjJLUylZ07Hr9LpPso5HM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc59cefab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/bg.png
172.67.148.132200 OK 1.3 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/bg.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 29 x 28, 8-bit colormap, non-interlaced\012- data
Hash 3764571a5d1dc1fbf05e51366f2a619d
e08c7b7371d6e3da4685ad4755da14967a22c132
1fb060b571caa31274091b748a35389e4e0592a022045ea551cd5afe25290a8f
GET /penirum-let-mechtayut-v3-sa/files/images/bg.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/png
content-length: 1308
last-modified: Wed, 07 Jul 2021 07:47:09 GMT
etag: "60e55bfd-51c"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qHUe%2BHQVx8%2BZpm7RlvI3cioX9vTw2w0qmtQzxiwKfIlABZZK3Mc22EULAGVXzYhSA0YB9ftTIzk6vbCy1zSzxT9So9pFajH%2BtMcWfNrwV%2BH7tfVxil6ETI5%2FJQjzjsk6dJ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e31f2efab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/logo_new.png
172.67.148.132 4.1 kB URL newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/logo_new.png
IP 172.67.148.132:0
File type PNG image data, 350 x 74, 8-bit colormap, non-interlaced\012- data
Hash 2b142223457fc6892baca0892b8c9b15
8091adc99f0dcfc21debba16303dfcdcc667ac7b
20d856e0b8c6c2f07a8c7fd25f8aec724187713e19913b751ff15802125f9eb1
GET /penirum-let-mechtayut-v3-sa/files/images/logo_new.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/png
content-length: 4107
last-modified: Wed, 07 Jul 2021 07:47:11 GMT
etag: "60e55bff-100b"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h51FNo2QmhN6SgzEugLq%2BEYvXrjiwmLiU5QHmbh2mrEWmapGjJc0BQKqbJwdp50sBGaXnVhMxQXTF2IMVzFUTSswJqqk6HmsKIXQxM36nmV%2Bb6mJ8BBQvC6FUb44uditdns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e31f37fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/icons.png
172.67.148.132200 OK 15 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/icons.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 400 x 2100, 8-bit colormap, non-interlaced\012- data
Hash dcef6a1d3dc16e5e781b3b99380e721c
7c492700f7e4ba94873d10903c1a58b03b594158
b27d19bd54f69eebd4227740a3a69d7f526348586bf2202720e64cd9748efab0
GET /penirum-let-mechtayut-v3-sa/files/images/icons.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/png
content-length: 14597
last-modified: Wed, 07 Jul 2021 07:47:10 GMT
etag: "60e55bfe-3905"
expires: Thu, 25 May 2023 05:52:31 GMT
cache-control: max-age=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EB48VOZakuh13JnUfrpn0RlWN7Me%2FXZ7dvluvv%2Fbd85BqCdD0%2F1XAzQwuYMcAIywzdUDP5E9EpndsYwGLYmGO2fAYwZFC2yypCsSuKA94yRZBtjJ1W8lalSqzSjdKTe9VB8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e32f3dfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800
142.250.74.106200 OK 1.6 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800
IP 142.250.74.106:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type gzip compressed data, max compression\012- data
Hash c5fca5af0e41a06af90c19666b895d9a
af9242862282f69b02fc0bec8bcf2ebaf1c2ee5e
214d1ddc1bd1254c55c6a10753c170b94c66237c688e5b49b98162777b9e4e96
GET /css?family=Open+Sans:300,400,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 May 2023 05:52:30 GMT
date: Wed, 24 May 2023 05:52:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/russia-light-webfont.woff
172.67.148.132200 OK 35 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/russia-light-webfont.woff
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type Web Open Font Format, TrueType, length 34568, version 1.0\012- data
Hash c33d86ce09e883fb7ce0dd3eb9a1efae
6ea020e8dd612b0376ca944d2e6bffcb6127d013
47b704b767d8cdeb1e0aba84c7d2e58e4e7244ad079591faee6b7db9f4a8e749
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/russia-light-webfont.woff HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: application/font-woff
content-length: 34568
last-modified: Wed, 07 Jul 2021 07:47:05 GMT
etag: "8708-5c683bea43040"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sqETvSGL4NbSjoTVGnNJDBhX7rlPRuzLXtXbzZrEFL7Vyg42m9IaF40OVXFKL2zGAJd%2FlYNVvlTtkus3FAUbTcszGNHmxhOYrlE%2BV3Lhw45km%2FSR6c%2FrZgiOsWd1KLTJdns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e34f6bfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsworld.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 May 2023 11:49:35 GMT
expires: Fri, 17 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 496976
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/arimo-regular.woff
172.67.148.132200 OK 40 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/arimo-regular.woff
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type Web Open Font Format, TrueType, length 40376, version 1.1\012- data
Hash fd6b63f2f64dff93832a861206134fa7
4343762c5ff14f8e61e5952c9b05a74bdd0fa1c5
83fb92affe35372e9e77a8abca4d787a14d5af3daa16c73faff45069d13a7ab6
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/arimo-regular.woff HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: application/font-woff
content-length: 40376
last-modified: Wed, 07 Jul 2021 07:47:03 GMT
etag: "9db8-5c683be85abc0"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UAO3xc7l5D06zskl9yvwhbEACh1mB%2F1RgDFi4kzLJWdCsZwkUiYZ4wS1oSraTT9uOswxV5PaP5YjlzIz85fNR3rYmuKvOU1zTEh9LohBXBD0OpSU6SvoZsfs4N%2BNF4y4%2FSU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e5089afab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
medical-room.site/click.php?clickid=undefined&event8=1
46.101.136.93200 OK 20 B URL GET HTTP/1.1 medical-room.site/click.php?clickid=undefined&event8=1
IP 46.101.136.93:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerLet's Encrypt
Subjectmedical-room.site
Fingerprint14:64:5A:9B:BD:DC:60:5A:C4:E8:DF:D8:11:EE:0B:2B:EE:2E:A9:59
ValidityMon, 24 Apr 2023 02:04:42 GMT - Sun, 23 Jul 2023 02:04:41 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /click.php?clickid=undefined&event8=1 HTTP/1.1
Host: medical-room.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 24 May 2023 05:52:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/med.png
172.67.148.132200 OK 15 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/med.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 315 x 286, 8-bit colormap, non-interlaced\012- data
Hash dbcde6c3873597f24185f529d645c857
9af6babb25ed93a9131b56cca4a1f7d9f257ebae
4c0807d73ab0489df4c0e49ade1e26a6a1c1ff280779c8aa2f2903797abf60dd
GET /penirum-let-mechtayut-v3-sa/files/images/med.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/png
content-length: 14702
last-modified: Wed, 07 Jul 2021 07:47:11 GMT
etag: "60e55bff-396e"
expires: Wed, 24 May 2023 15:21:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uTnWSb4omr7x1gVau6YCGSQ0SJUfVuELnlp64tPOAliTy8JSRMO5bDN0Nt4bUM5rNvf9xxoVQ6R%2BjDpSYLhtpU69RLH45CS6%2BJN8gwceSFqhgwSdcMznTq9x1DyUf556Dj0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e6092afab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/flipboard.svg
172.67.148.132200 OK 769 B URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/flipboard.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (854), with no line terminators
Hash 84c54ac4def1eeb781c2473eab226f4d
d5d0240cbde7a926eebd501db18c6cb63b291a60
c39296fa22fed9a3d2c2ac9f8de404eae81a4b9e81cc7ca720a17d083228b923
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/flipboard.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:03 GMT
etag: W/"60e55bf7-301"
expires: Wed, 24 May 2023 10:03:03 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EZ22AxPTxlR4masGVy2NBUhuqng96jEKK7EcfXM7qPOIJJs%2FRlz9T%2F%2FGH7aNa5YVOAwk8GBiXA3pfjgYBGOLc1Q2eiGRcyBhX3ub5wjexA8MWoDLhdo240OzA2edhpjxom0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e34f62fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
104.21.19.144200 OK 0 B URL GET HTTP/2 www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=1 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 05:52:32 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KK%2BFFhvnThMzQFFNiiiaxTcZi1HRbvMQfkcAHcqWkQryLiMK49F1qr7AzK%2FaQ40bcq9Gxpqg3QY%2BabJQ2jaoEXLFoEdV%2Fq54JqAbNDDSblhsiEQFvTQwLJiaFj39jTAy6OQpUc0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc345ea7e5e0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/form.css
172.67.148.132200 OK 26 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/form.css
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /penirum-let-mechtayut-v3-sa/files/css/form.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: text/css
last-modified: Wed, 07 Jul 2021 07:47:00 GMT
etag: W/"60e55bf4-64d6"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HI%2BtBC5zffG4useVMebQyY0TpOd3bg%2Fbp2%2BEU5SOZgpEdAXxBh4jAIg%2FeOnI4Dmjq28fZIVE9CYVmyPrOxkwJOlbl1zlCMguTTWRj49xFaIxh%2Bw0iWfPtnMoioUgRp6g%2BwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc3992fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/js/back.js
172.67.148.132200 OK 6.8 kB URL GET HTTP/3 newsworld.cloud/js/back.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (6954), with no line terminators
Hash 2e4694b29859fd7d2b65eefae3dfc929
6105bf97b36a1dbd4a4f260781eb0330d42a90ab
37fe5a70c2321103fb0b59e07cea8688b2a473385f5205f2427aff524ef51bda
Analyzer Verdict Alert fortinet Malware
GET /js/back.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: application/javascript
last-modified: Tue, 26 Apr 2022 16:16:30 GMT
etag: W/"62681ade-1a7a"
expires: Wed, 24 May 2023 05:53:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 69671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hQPVG1CQyBa9NHuyO300nv8FiRSkXlCWlOvA6SSf1MZk9GRxH8vvgjbEoVP1sNQV549aoqnqaXDEnrobt6eyaoW8hKjGgYpenMyvNieFNI9g9t6y%2FShE7H5NguOx4vHYX%2B0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc39a2fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/youtube.svg
172.67.148.132200 OK 1.2 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/youtube.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1271), with no line terminators
Hash 43cc78576901d0339eb846b2c3d56ee8
2716bd277f7b3b8dfe3bd8b6279eb8af2c375d44
45db3cf7067ae9dd5ff2d53243b4c49e00282f85b182dd3d068913d3c5d849d0
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/youtube.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:05 GMT
etag: W/"60e55bf9-4a7"
expires: Wed, 24 May 2023 12:55:46 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pwwNi1XN5oxHxCIiXrUCdVsLdA7WGVvBHxITc8jWNRmfjCmSo2P9sZMluAFXPtys86CVEQG2sC1dcsDAtWHPWbTsDHRmUChTTBpG4ujfz0DUU6H0GHsXXkDuXdWW9VVg91Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e33f52fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/rss.svg
172.67.148.132200 OK 820 B URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/rss.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash 72c35b7fd87e2782572f14abf563d8e9
02278484f03f8bb055109f947fc027b8e350b99f
bbc91ae4e9dc83ece0822a6262b1e256d2ab16dd0bf1feaa261d366fa22e46bc
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/rss.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:04 GMT
etag: W/"60e55bf8-334"
expires: Wed, 24 May 2023 10:03:03 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hz0uyTf0M%2FtMwJntd2bZcEblpy56OXlSGx1y3qSEWJZDR2zXgRrYlLrna2Q8PrYnZBlBA5YC4%2BbEQ3acnSO6jiuqMc2Sitaai5gBrajqK9MGdLJu9nAKzyTPR73mw8ozpIs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e34f65fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/facebook.svg
172.67.148.132200 OK 961 B URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/facebook.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1035), with no line terminators
Hash 2c206f24df710b131067ea58327a3654
fc0093196ea1e5db4a44fd8b9c7a838e12c56983
7ca9b2d68fcaa8230c3ec65fed0c7dbd398afb7d10865987c465b18a710a48b0
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/facebook.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:03 GMT
etag: W/"60e55bf7-3c1"
expires: Wed, 24 May 2023 12:55:46 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j09xscMFn%2FADv92WZENr5J%2BPMT%2F6i8CvKElKnN2XWLThRLP21BB4CyO8QyXfyRIkp9PpkPYO0P7luKvI98dr6ZCDPYFfpwMKkJwFFbDU0je7Nq7ctwPydTcWWI0hfyuIWBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e32f44fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
104.21.19.144200 OK 0 B URL GET HTTP/2 www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=2 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 05:52:33 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I6uL4CFvMqrTbXySDw6c%2FjKkqkGvQdbsg1p17EdBRf5hPw4urJ%2B02rCWlTIL1DopaWXScawn23tTnJE5Hb2pYA9dkhtBSoS8WiBHwWyMsq4tfC1TWsZEyZyhpj%2BTL95cZgCkm%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc345f02b8d0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=5
104.21.19.144200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=5
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=5 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:36 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ik5V4dHC0khMvjR1PbUAM4gSDfMr4jnURJL6i1MLbDFXzT%2Br2mUEUiK5mFJ7MJ5NBv0KjBVqdXhkVLG9nDAkNML0eoK0XVQWh1FnFGdJ%2Bk9IBTr3Kst02SYZpeijs8fB0MSrPVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc34602ef710b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/twitter.svg
172.67.148.132200 OK 1.4 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/twitter.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1464), with no line terminators
Hash f2e71be99c173b2ec283306967d15852
ec7b32d961fe80a685d8b3447b666d3616d17331
f840c957e7d654e0fe992812697c1af6b794b2f845816089d315b75ec8d9e5c9
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/twitter.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:05 GMT
etag: W/"60e55bf9-55e"
expires: Wed, 24 May 2023 12:55:46 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qCTfmi9IVVwzylbq%2BAS6gXQPZfgUTIlXRRkx0Tx004XIdW7A%2BMAGlCAlrpkpUGw8SZ3gcUkRo%2FHupPfIosqnoQHL3VVXnCKigxkNz1iJNMNJRMq3618m5k0JMnCxNHbE4l8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e32f4bfab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=10
104.21.19.144200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=10
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=10 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:41 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D6NlGct%2FpZazYAwAyvJybIF5c67QC3D0yI%2B579ldSeenJt0U9Az00MTXdV8OsTesfp08knh4OmDTNk90JL09qw3DyZZ6l%2B3JE0mYQCpLR2AR6G4BT3Rxu13bu72%2Bzb3SPge54jk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc34622281f0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/insta.svg
172.67.148.132200 OK 2.3 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/insta.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2405), with no line terminators
Hash f231db7f0b02dea0055c29e6b6bf071d
d9afe45bf89346a37da45de5f31f873221a6d045
eb99b2665cc1e13bf400466e0a2d51bae99b578e66381b874bea1f1b7211bd61
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/insta.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:04 GMT
etag: W/"60e55bf8-910"
expires: Wed, 24 May 2023 12:55:46 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DPcO1Xghy%2FQog8v9v%2BmBNAXNqsx5wugTJdHLcnv6jXxGDXpFtTmEFTSMGFAFzyAsuuzoG7gul%2Fg5q5qEIH9uLYxylPljFhddQNrYssblJYKXC%2BxqGGLqIaUQ2BMETnTEEXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e33f4ffab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=7
104.21.19.144200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=7
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=7 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:38 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QgPIqtvqUGaRCPNuRKFJ1VolQZgg7XjUy0r1%2FtFWNyS62MzZ7L0FXEYbR1qjpVIgIf6V3msY68JfqjR35aSe48QviS8iB4EOZhOID5UnefYX7jpGCXnyUcsAO7uhe2E%2Fk4tK%2FaU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc3460f687a0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
172.67.148.132200 OK 17 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type CSV text\012- , ASCII text
Hash 9e8663e80a89fb9b2e483dc81a2723ce
2b9ea254da8ad3e1654b763143b09a7795b4a502
8516be4d3cf905ca4882d8713c83e21f4e9eaee734a1af4c0b92064980e4fd19
GET /penirum-let-mechtayut-v3-sa/files/css/all.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: text/css
last-modified: Wed, 07 Jul 2021 07:47:00 GMT
etag: W/"60e55bf4-42e6"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tc2qwOeNPvrK2hb2JBobMAihfKcif5SSViKHhB97CLvT%2FKRRKxMVfdVwzUW36sU0cWzsXOJO4Z%2FCZ4rIBF7BIk4NoM5%2B37m1Y6zQ4OKDisIfXVI%2FiyBx%2FRWRoj%2BOvexSpIE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc298efab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
142.250.74.106200 OK 11 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
IP 142.250.74.106:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash 1e960d07bf13260605883a5d201ccdb7
69ce96092d257837d6af401bcf8b11b3d2f74b3c
bbd133aaccc627dd11acf8545f051db9b1e00f4875ff6c7e89ab3509f9871ad3
GET /css?family=Roboto:300,400,500,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 May 2023 05:52:30 GMT
date: Wed, 24 May 2023 05:52:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/burger.svg
172.67.148.132200 OK 1.6 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/burger.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1739), with no line terminators
Hash 3d96f82cd7a446d96fb98ea7d5ba26f3
855f5031a401be5870a5db42b3a48d3e5cac633a
b2893783f456494e6d0207d2474e8a4ff8d36377ffa81cc1af16b7d0865129b2
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/burger.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:03 GMT
etag: W/"60e55bf7-671"
expires: Thu, 25 May 2023 05:52:31 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wCGsKGZJWQ%2BsnVbw1dA%2B%2FQdbWadytTQczeqKCDBbnJp%2Be%2BnqaJ0ofXc8m7FTtzxAfWbzFYCre3ogKSp8y3YEmKsjvJ94UQVqUGia6WN8FWQpOM1MPMaX1zf%2BizDLbFy0txU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e32f3cfab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=9
104.21.19.144200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=9
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=9 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:40 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LoB03t7S8x1ZIgoGxqTsiCBJQcDvyOv30DOGdPEICbMYBNQMR%2FTkXdE%2F1FTMeq83zNLiOv8Fxp2kW%2BZg1NLVyNxseEZQXu4r6uNfQoIzflAzsnj9i8TYuhXzyj9ikSIo78U7LYI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc3461beaf50b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/js/script.js
172.67.148.132200 OK 11 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/js/script.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/js/script.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:30 GMT
content-type: application/javascript
last-modified: Wed, 07 Jul 2021 07:47:13 GMT
etag: W/"60e55c01-2ac8"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=00QsCWXTpuPqgLT4%2BzdMvjv4YoP23rJ%2BGem0ZMMq1WxS3dKKuJeZ5ZvlwB7Ilgy6fJOA73PaP0trVUWKG6IWo7hP8g%2BizsQ4PcBU0dMwtu6mCAS6uVgTd%2B931l7wXCRQ%2B98%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345dc298cfab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/comentsm.jpg
172.67.148.132200 OK 837 B URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/images/comentsm.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 34x34, components 3\012- data
Hash 50e7b5d0d1543ce2fcde58916b3ad5a3
f2c7d330c8978dbcf898633a3029a78db38f9a71
083bbbd660a0924cca7b13eb5c872b86a8fcc311610afe9b59dc6d7f8f64237e
GET /penirum-let-mechtayut-v3-sa/files/images/comentsm.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/form.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/jpeg
content-length: 837
last-modified: Wed, 07 Jul 2021 07:47:09 GMT
etag: "60e55bfd-345"
expires: Wed, 24 May 2023 09:39:56 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SuXyCuUm5do3NM2Mool%2FQwb5tAWroJfv69QWJRXYyaiBUaCnM%2F4w5Xzq7wOej%2BeNVRfxT%2BiEoIS05DypHnf70oREaIl2vdFGZHVl%2FUu64u9XshEaPOtxLuz5fb6O%2BcQZjcs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e32f3ffab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/odnoklassniki.svg
172.67.148.132200 OK 1.9 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/odnoklassniki.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2052), with no line terminators
Hash fc61e719267411a2b596450062d4f1a4
149fcdd91562ea84326e00f41f8f2c75a922b9e0
c4bfbb06ccfe265bf66335ef290d6889d31e12dae89d2ad7adb0b9c1bc97dde8
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/odnoklassniki.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:04 GMT
etag: W/"60e55bf8-783"
expires: Wed, 24 May 2023 10:03:03 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N0yi4QjPEUeLQGnmNVSjfGYDHD0o7TO4Sctii7iUu%2FPHleGnkwO4hmmrXkd8tTj9LP%2Fb1Wjb8soWAbt4ROzRrm7DCWbD7mZ6MfU80ksDQzTDQJgD80mEwYJGTYEb21UsCQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e32f49fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=8
104.21.19.144200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=8
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=8 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:39 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z9MIBeyl3sWovguavoHic2PufWmJwwuXtnurIHqF2DpsYyQngzYP1xAaV4FjE83q%2FWa8MA45PTm3dXHe8DvqIvGTpm7ZjJx92aF%2BOImoV%2F%2Bo3yvjpYfurwulMY95q6mBl1crUGg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc34615ad580b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=6
104.21.19.144200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=6
IP 104.21.19.144:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerGoogle Trust Services LLC
Subject*.binomstat.info
Fingerprint19:4F:17:3A:E5:95:26:28:17:37:14:C3:A2:04:93:3B:3E:B2:83:15
ValidityMon, 27 Mar 2023 00:12:52 GMT - Sun, 25 Jun 2023 00:12:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=6 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:37 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4McHeikBzDNTTKRtdB6f5J1TY2E2AlbGLATYNZq4wqA%2FYtxQdwBKaDbfySkvhXO%2BmYk5ZLcwsFNNXTFzv%2BjIO0kaP3mz8V42PeOSankZZ%2BxfEQc%2FVzvBVhM7Tj7%2FB81rLKRnlvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc346092c780b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/vk.svg
172.67.148.132200 OK 3.6 kB URL GET HTTP/3 newsworld.cloud/penirum-let-mechtayut-v3-sa/files/fonts/vk.svg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/penirum-let-mechtayut-v3-sa/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (3683), with no line terminators
Hash 16c248bb27ac02ed5d6c29b8de91c501
c5be843af5aafe6a1d162e5bfcd953ecbc8a36af
9a4eee9b1f3a180fbfb61e1d13a609679de7669e7c784aa9bc50f751ac8b07af
Analyzer Verdict Alert fortinet Malware
GET /penirum-let-mechtayut-v3-sa/files/fonts/vk.svg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/penirum-let-mechtayut-v3-sa/files/css/all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 May 2023 05:52:31 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Jul 2021 07:47:05 GMT
etag: W/"60e55bf9-e01"
expires: Wed, 24 May 2023 12:55:46 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KifGKNFXrdyqTHNoVqeBaR0h82B1dbF95oHWwlYV8pfW%2B0Tm%2FDM4CtGDXYrK2a9gijs2%2FeTfgbu8hrFI7cY0eMMS33OEI5AwNigoUOzbv4Dykmrt9Z5vOchfl35w68v5feU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc345e32f41fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400