Report - newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/

Report Overview

Submitted URL
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
IP
172.67.148.132
ASN
#13335 CLOUDFLARENET
Submitted
2023-05-28 15:27:40
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
newsworld.cloud	unknown	2021-04-21	2021-04-21	2023-05-28	18 kB	641 kB	104.21.29.63
medical-room.site	unknown	2020-04-06	2020-04-12	2023-05-28	429 B	257 B	46.101.136.93
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-28	1.5 kB	57 kB	142.250.74.106
polyfill.io	102644	2013-03-18	2016-02-12	2023-05-28	406 B	1.0 kB	151.101.129.26
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-28	3.3 kB	7.0 kB	142.250.74.131
ocsp.globalsign.com	2075	1999-04-19	2012-07-20	2023-05-28	358 B	1.9 kB	104.18.20.226
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2023-05-28	432 B	32 kB	142.250.74.42
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-28	3.2 kB	124 kB	216.58.207.227
www.binomstat.info	unknown	2022-04-27	2022-06-05	2023-05-28	5.7 kB	8.5 kB	104.21.19.144

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-28	medium	newsworld.cloud/js/back.js
2023-05-28	medium	newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/js/modal.js
2023-05-28	medium	newsworld.cloud/js/binom.js
2023-05-28	medium	newsworld.cloud/js/form_validate.js
2023-05-28	medium	newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/empty.ico
2023-05-28	medium	newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	newsworld.cloud/js/form_validate.js	3.5 kB	2023-03-07	2023-09-20
Pretty URL newsworld.cloud/js/form_validate.js IP 104.21.29.63 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:48 Last Seen2023-09-20 06:58:38 Times Seen90 Hash e5965c9bca6c2d3ac8d6b3ae2e28ab61 1ed9d92c678a35e868f87684acc4c6caec2c734f 325ae3ebc4e1521ef1111318510de7dcb1dca2ac479ca1bcf27162dd20c166b2 Loading...

	newsworld.cloud/js/back.js	6.8 kB	2023-03-07	2023-09-20
Pretty URL newsworld.cloud/js/back.js IP 104.21.29.63 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:48 Last Seen2023-09-20 06:58:38 Times Seen82 Hash d00820ad09e4c241902e85bfa1f6e08a e16e0de325f13677084f596fa198ca7694f1b06c cf52e4b88e2562bcb1a85a6d8f43e48a50546c7e33cd649645390d46509c58d5 Loading...

	newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/js/modal.js	11 kB	2023-03-07	2023-05-28
Pretty URL newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/js/modal.js IP 104.21.29.63 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:37 Last Seen2023-05-28 17:27:42 Times Seen8 Hash 580dd93128a162afc8c2449fe1fe2c65 96041ded2219b2ef958d6e1fd4e882d4c459a65b 2a3a5ccb75310a67dfce0ccdb2b53213a181a8dd699face764e4238528ed1150 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js	88 kB	2023-03-07	2024-04-23
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:43 Last Seen2024-04-23 21:11:49 Times Seen6766 Hash bbcf3bf05fa6cb58a67cfd0498f00d23 e4925196f6f444fa58915420fbcd80f909c68d28 0497a8d2a9bde7db8c0466fae73e347a3258192811ed1108e3e096d5f34ac0e8 Loading...

	polyfill.io/v3/polyfill.min.js	101 B	2023-03-07	2024-04-04
Pretty URL polyfill.io/v3/polyfill.min.js IP 151.101.129.26 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:52 Last Seen2024-04-04 19:28:27 Times Seen15744 Hash 66a7d2a5dd73e9fca370d85360c85447 2e4ca9cb2ed0fcd0436ee10516b2bb441fc16a63 d7f817255acac24d24766a420471f23c0796b5228b84f8432bf70570ed870b72 Loading...

	newsworld.cloud/js/binom.js	4.1 kB	2023-03-26	2023-09-20
Pretty URL newsworld.cloud/js/binom.js IP 104.21.29.63 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:52:56 Last Seen2023-09-20 06:58:38 Times Seen77 Hash 23eebd35c0df67458708791d9fb2da1f c3f807e94ce309ed459bfc270eab8fd1cc098c46 eb3d0b3ae3e4f3244cdedb18451348edd6f1e41b5c3be8aa5ea797b5c3e59848 Loading...

HTTP Transactions (71)

URL IP Response Size

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/logo_med.jpg

104.21.29.63

200 OK

34 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/logo_med.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=101, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=464], progressive, precision 8, 464x101, components 3\012- data
Size
34 kB (33451 bytes)
Hash
844b8e6529a47bf7d9b9bfff38ad1c46
2fae05bf0273c4ee76e51a65edff18dfe5c76632
224a77f9778f2112bcd79bd0c976391965180bb16a4b7a52009d6541d2ed6b9f

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/logo_med.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 33451
last-modified: Fri, 04 Jun 2021 08:10:05 GMT
etag: "60b9dfdd-82ab"
expires: Mon, 29 May 2023 14:17:55 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cBjOyrUfZ3VvP2LWCp%2BUKz9p6QSffee1OJWw5%2FCaprCJO0qRgTsmr2fgx75C7K5k%2FuOzSa8fIiP%2FVgDCMO%2BNzvu2t6tMBJUgfhu8yVdj6y%2FpCSmlH2xoVebRuNRea6DgLX8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785752957fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/otek-main.jpg

104.21.29.63

200 OK

31 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/otek-main.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1128x504, components 3\012- data
Size
31 kB (30606 bytes)
Hash
ce8853ea2d5971bdc4f9dbdf8a51d814
c1b71ebb986ace3a10d9f5c0f898bcf203d09e6e
591886747705d8969395442c37dc97db6701ebc3115dab97160b5bd38eb0989a

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/otek-main.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 30606
last-modified: Fri, 04 Jun 2021 08:10:05 GMT
etag: "60b9dfdd-778e"
expires: Sun, 28 May 2023 15:47:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GJoUu6jmo5LJ7AYX0q1XaPwCyBzQRWZWY9HYZB3Hg0OrZSaZvoKiqFRxsWIDPoKShFhM8bLFlS4kDSfpZkddENhD6oE5xKstPtpmYLrpH6Saw%2FUhLsUtYGTtTX1F6PRdkC8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785752958fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-5.jpg

104.21.29.63

200 OK

53 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-5.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 650x555, components 3\012- data
Size
53 kB (53316 bytes)
Hash
6455b92a76106a4e13b4f88a366fa297
6e629264c8cebaed3f20cfc20c78b2a52c32b284
13c9e68798b405ad9000c02afc922dee5f742209bd17a7fd09ff4b917871d765

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/img-5.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 53316
last-modified: Fri, 04 Jun 2021 08:10:04 GMT
etag: "60b9dfdc-d044"
expires: Sun, 28 May 2023 15:47:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oXOUQq%2Bgr%2BP%2F0Kuw%2FpEWLg6%2BLFMI%2BGFVRIhxC5W5bzsuGwmGktVhkg4AV5oTST9u5Y3Osh5xfWf9QpPVf86ovS6%2BZGFlCgl3Re7VW7dtExej33SUYhwb%2BLRR7YjYJqmPcMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785752965fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/conten222t-1.jpg

104.21.29.63

200 OK

14 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/conten222t-1.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x310, components 3\012- data
Size
14 kB (14310 bytes)
Hash
477b9ab436837fb0b3dc7052e492a381
aadf2b6d9e63ae2265620e94c2e9f266fb1768af
5731b9b38c767ef4f9012a253173ce6f83661f287d4beb0a9ef840945d2301b7

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/conten222t-1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 14310
last-modified: Fri, 04 Jun 2021 09:04:15 GMT
etag: "60b9ec8f-37e6"
expires: Sun, 28 May 2023 15:47:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jn1kf45M8vnq%2FCD4I7vdQqz2l4xhURovhtyWchUCTWVAdylka0WgP6ZtCalbkOEaBL3lUuhmZQ%2FaEl%2B0ASCSavXrhAu7piakEOBFjEK3s17hM2FeBEdybRm%2F1qt5ViXSlsA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575295efab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/med.png

104.21.29.63

200 OK

30 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/med.png
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 315 x 286, 8-bit/color RGBA, non-interlaced\012- data
Size
30 kB (29650 bytes)
Hash
5a9b5e4f73dc74b43d19234d549bbeae
ea852712906742ebdbc05c1305ab2e9b99cdb464
041f8955fa0226f251d137ec997dc9c4f6b1a6fe714e3811b949685fe9f350fd

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/med.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/png
content-length: 29650
last-modified: Fri, 04 Jun 2021 09:22:17 GMT
etag: "60b9f0c9-73d2"
expires: Mon, 29 May 2023 10:35:32 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M0VL7TA6sGrs5g7hGgmUYDrJ5exfovZOxt5xsTrBUKOXaqIOuXc5oKT42zzOGqeDv43XrwtfdqDUQ7ahbsMyUyW4rSEPpuu5hLpbk0atpCUXO5Ir%2F2qr1dHJy5K9HPMIHkQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575396dfab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-2.jpg

104.21.29.63

200 OK

26 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-2.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 650x439, components 3\012- data
Size
26 kB (26006 bytes)
Hash
ba2aefd4a68015b6df5202cf699d8b1a
ae931b77ac26e2d52492967dc3b58ed6718d5f2f
313cb047a2ed316001088adc33b98fc3e5bf983406dee3482706695a8733d145

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/img-2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 26006
last-modified: Fri, 04 Jun 2021 08:10:03 GMT
etag: "60b9dfdb-6596"
expires: Mon, 29 May 2023 10:35:32 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2Fy4A9SkWE2HNaHtaiigY5WWd3%2FY%2Blti8x5Y14kULTFcZgTtPTvwAg2uaYAFlzt8PpQdT2EMRmfFjae0QvQ2a0IDAFOeixhLl%2FT1XB7ohn0qpM11ATtJvZI1UkzZARqhRxE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575295dfab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-3.jpg

104.21.29.63

200 OK

61 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-3.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 550x604, components 3\012- data
Size
61 kB (61286 bytes)
Hash
e2b42b7161355a303e4f90d905b48d47
7f7d84b17907cf91d3ad8534912f06d2c977caad
b28b369659eb7e8df3f556b880ab380d963b3b63f2ea2e413dfa8f50daa76261

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/img-3.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 61286
last-modified: Fri, 04 Jun 2021 08:10:04 GMT
etag: "60b9dfdc-ef66"
expires: Mon, 29 May 2023 10:35:32 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ETlWFPYtTtob%2FiG93zvGzMpx9m%2FcXfCvMMs7UX7eEivrEZVta%2B0r2dt6CBvgNkKnL930eFtWYo4Rzz43kfpx2gHlP11t%2BQJb9tDMIk0auneLlESmmz7cLbGooeSII1vxork%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785752961fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/2.jpg

104.21.29.63

200 OK

4.4 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/2.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
4.4 kB (4369 bytes)
Hash
5bdfd95828590beefa82776fc8f93766
7345eda018d8487466df5bf0cc54b90832fe01e6
b36edf9a534033693bde8818f151896bd0619dba07e66dede9ebe150bae1ebec

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 4369
last-modified: Fri, 04 Jun 2021 08:10:01 GMT
etag: "60b9dfd9-1111"
expires: Mon, 29 May 2023 10:35:32 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R%2FeLSGNlreWjQNBnIgHqRkPbNAIFet1oGNTg5yx1SwQExxWwK5pLEw9OwROjd4GP4V59ineKrKiYNgqR3S2Q97ue5G7PGwSsQp5d2NXKUqJE9jk8JiiGByVebai0QAyMbc8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785753970fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/3.jpg

104.21.29.63

200 OK

4.0 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/3.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
4.0 kB (3989 bytes)
Hash
d4a9cd6ae53f98df9bc5ae0002c19c2c
c8a601ccc2a2ca8b632b6f115a934c67411e9f31
a5a98357a271d1f91db3a27e1c90700910f8b9f38ded749f9bacc0bc0ba36348

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/3.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3989
last-modified: Fri, 04 Jun 2021 08:10:01 GMT
etag: "60b9dfd9-f95"
expires: Sun, 28 May 2023 15:47:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FHeYimXYC%2FO8NOEOWz5iddmQIO651FjaeXgZ1djzXNpuTrrDf1eF6hN2s3H7OzGX3%2B8YQU2sys%2FVSV5H4oo2KJdTwVqxinZfLZoVQtD%2BX0qjfafUZ83pWbEtUU4hgxwz%2Bbg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785753971fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/4.jpg

104.21.29.63

200 OK

4.4 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/4.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
4.4 kB (4413 bytes)
Hash
0256b83233de4d5fc37a06e3e09fe9fa
49ab35b1b85ffa903a381ebab9c529c97571f101
6af924f65a3d7a81aaaea90c0f9fe10386a9a81135e8a908c5eeb23a8b0e91c8

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/4.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 4413
last-modified: Fri, 04 Jun 2021 08:10:02 GMT
etag: "60b9dfda-113d"
expires: Mon, 29 May 2023 10:46:02 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FXb%2B5pLr2ahu1iRmslIBfgPj3JA3PAFCR%2FdrL96D1mxbivNmRk%2FFdfYp7Pk8Fp9IJ%2FgG6ZwbQt5bTZOcLZVHVBwpZClDsK1mOZVw7HvdtGegifiF8c8w3Ega2GGQzKtV8h4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575396efab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/1.jpg

104.21.29.63

200 OK

3.6 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/1.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.6 kB (3589 bytes)
Hash
22ad3ad69b82e0d0724d5a77a9c9a892
dd6966ee24628efc1f64feb3f3722f6195f19689
7bde04e677a9ab6061645a6f73c330a161882588df46e17ec3b98a407801665e

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3589
last-modified: Fri, 04 Jun 2021 08:10:00 GMT
etag: "60b9dfd8-e05"
expires: Mon, 29 May 2023 10:35:32 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ceX538Q4oEfMZyZIwHBuRy1Ba2tvksQTr%2Bpv2xkYFEUzfSlqgxOOogcmRLGLbybwr3nHq01kgC64VNfjLPrZbbh%2Byplah%2B6tHe4U77jbU%2BnAr3yWawqw%2Fotk0co73lXjsrY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785753972fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-4.jpg

104.21.29.63

200 OK

52 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/img-4.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 650x569, components 3\012- data
Size
52 kB (52521 bytes)
Hash
6245b26cbd3b3bf525ee3ec64f0582dc
4005eb21c1d8f728c91b0ff1fbbc3e3f4ef382a4
a3c7e6afde81605f9c89f2fcf60a8830886770cb9bcda45777f66fe472399459

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/img-4.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 52521
last-modified: Fri, 04 Jun 2021 08:10:04 GMT
etag: "60b9dfdc-cd29"
expires: Mon, 29 May 2023 15:27:22 GMT
cache-control: max-age=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=289E5Ns4xAKs75rAZiEdXC%2BobQbXG7S03p9mEDhTuYJ1l3Hn8QymwYwtE4NRGs4dBq7WDMjUN8zYqGecE2QYorm4%2FOrmJZjYJBZp4Qfh5ZTi9kEPdAlHkUFOhSWjVnjHtVg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785752962fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/6.jpg

104.21.29.63

200 OK

3.0 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/6.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.0 kB (2958 bytes)
Hash
884bf6d1d47fc15638f75d6b9b8b62be
77f3a45a8855e3409582990accfcc98efbd807de
7e40cc2c67de1a78fbbe085414d98403cee3aed23d1c1ad3155ac47aa1d48b2b

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/6.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 2958
last-modified: Fri, 04 Jun 2021 08:10:02 GMT
etag: "60b9dfda-b8e"
expires: Mon, 29 May 2023 10:46:02 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R0E2StQBdu2vp2YHsLgDgibCzQfqX%2FM3n0aDm1ES7QIQL3LR7rQxqNQtwFP2p0mSShWIN34GJpEa6AFeQa7J6C2PmmLPVHMPR1ZT2PZzXQWdof84mtsC75VOB69WTGDWAV0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575598afab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/5.jpg

104.21.29.63

200 OK

4.5 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/5.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
4.5 kB (4509 bytes)
Hash
7b92d489ccc1125a6f24c5a751045c06
1a08da38dbe6ccc1674789079ad1acddf8925f2a
119a916f7525a8c0e4a65d58a57bc6e88547d6ff8d95421921d6115e6d4afb56

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/5.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 4509
last-modified: Fri, 04 Jun 2021 08:10:02 GMT
etag: "60b9dfda-119d"
expires: Mon, 29 May 2023 15:27:22 GMT
cache-control: max-age=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9KiIA9ZdvpLKkyZeBuFVnGF9n54IdVCxfJf%2B3DJfV5tHqHgpPCbqdf%2BOPgkUDZ3zo1p3KD3a%2FB3DhTFSyJ%2FBH%2FtnJCLjQ3l3%2FBCVS4S76q2W3KppgmQzrhn5KUtHJ2JJI3w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575598bfab8-OSL
alt-svc: h3=":443"; ma=86400

polyfill.io/v3/polyfill.min.js

151.101.129.26

200 OK

113 B

URL GET HTTP/2
polyfill.io/v3/polyfill.min.js
IP
151.101.129.26:443
ASN
#54113 FASTLY

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGlobalSign nv-sa
Subjectpolyfill.io
FingerprintCC:EC:67:62:0C:35:B1:49:2F:28:55:33:F4:F0:49:CD:3F:88:CC:3B
ValiditySat, 10 Dec 2022 19:50:06 GMT - Thu, 11 Jan 2024 19:50:05 GMT

File type
ASCII text
Size
113 B (113 bytes)
Hash
66a7d2a5dd73e9fca370d85360c85447
2e4ca9cb2ed0fcd0436ee10516b2bb441fc16a63
d7f817255acac24d24766a420471f23c0796b5228b84f8432bf70570ed870b72

HTTP Headers

GET /v3/polyfill.min.js HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
fastly_service_version: 195
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=UTF-8
last-modified: Wed, 03 May 2023 00:17:37 GMT
useragent_normaliser: firefox/111.0.0
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
referrer-policy: origin-when-cross-origin
timing-allow-origin: *
normalized-user-agent: firefox/111.0.0
detected-user-agent: Firefox/111.0.
accept-ranges: bytes
date: Sun, 28 May 2023 15:27:22 GMT
age: 1695991
vary: User-Agent, Accept-Encoding
server-timing: HIT, fastly;desc="Edge time";dur=1
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 113
X-Firefox-Spdy: h2

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/7.jpg

104.21.29.63

200 OK

3.5 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/7.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.5 kB (3542 bytes)
Hash
b835a300a2273b6b26a84cdd9333ff66
dd97f1a070682f2603a1951c81b9dc803f9be46d
df785dbd403265e114cbad40218452e6cfd595b9277e63b511dbba783243410f

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/7.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3542
last-modified: Fri, 04 Jun 2021 08:10:02 GMT
etag: "60b9dfda-dd6"
expires: Mon, 29 May 2023 15:09:39 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yc%2BSBCWkbUnj%2FQjeZPOzFBq%2Fkqt2%2BNWA5qpN%2BajAsA1YKRa1KvzMeMKIsUACU3MvOWMug8AomPaXEHGzgNX2zocxj1IfZXRMZeRsxAKgtYSLUoi3r0eRR4%2Bt6ZAJl3BY3gU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575698ffab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/10.jpg

104.21.29.63

200 OK

5.0 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/10.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
5.0 kB (4997 bytes)
Hash
cd75e1e9806e154a1c3cceb3fe21bb88
6ae46b07baf7d6b95dde63532287f1ec52ad2046
1d79582908aa3bd1ea58317f4fd299e2431648e1b475b41eeb3a9d16957e1e48

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/10.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 4997
last-modified: Fri, 04 Jun 2021 08:10:00 GMT
etag: "60b9dfd8-1385"
expires: Mon, 29 May 2023 10:46:03 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J7eHFUo4W9ZvkV5jNc0m802bHqnawFPNFoRnL%2F9KVNsugZfa8GwS0oKeXirGqxLmGIbTNH%2B3oE9svPc6HREZykPQ6xvFixiZwbgr84fjZxdUOmqW7ALDTjwHaYkThF7o8wQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785756990fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/9.jpg

104.21.29.63

200 OK

3.9 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/9.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.9 kB (3875 bytes)
Hash
cef932b0ddf72392604a9c2676ce92ce
d524d41a1a4f20eae3c6a0bd34283b9efefc0542
5450b3a6c67b77a8d81b0959952f68494cb45863e0a5b1ebdc28628b2ee2eb4f

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/9.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3875
last-modified: Fri, 04 Jun 2021 08:10:02 GMT
etag: "60b9dfda-f23"
expires: Mon, 29 May 2023 14:17:55 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WUTIMO0%2BTIjvb03B8olom9lBLGx%2BpDgE1FRwx8DfOjnyuadthQCYvF0xIEqlZaipIHwl9TypSWv4H4O9eLJCOlMgVHXB4vY2NauPXadDh3TnTgcS%2BFfFc8emRRgGT340EEA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785756993fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/8.jpg

104.21.29.63

200 OK

3.2 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/8.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.2 kB (3185 bytes)
Hash
e1df95049cafc5d765c8c3ac66ac193b
8717aca75dcd85f86b6756caca977aa456936c5f
271b472b978ee8dae06b0e3734bdbe98659692b88e6498bafbd6db255141d67c

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/8.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3185
last-modified: Fri, 04 Jun 2021 08:10:02 GMT
etag: "60b9dfda-c71"
expires: Mon, 29 May 2023 10:46:03 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0fuBf2m6jddsUUNT%2FyZyRWsw8rmZ9ke%2F%2F%2F2tAistHYFrucCKsPVGYGSRuzXwMml67hwV4fl6wBEmeR0vOoY5Vaj0xFpaqv8OXHrrwexSw33awJ8t3lsn1bxfdVetEA4ZXJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785756992fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/12.jpg

104.21.29.63

200 OK

3.9 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/12.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.9 kB (3943 bytes)
Hash
00f6a31ff04a8319595e23b36ab5c722
1b3b59ef7277db8917bb7503f57ef17ed8baf83d
ef00d45a3517a568161d87ed80b5df1ff12a4975dd5b2ee1de33aae8efb65265

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/12.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3943
last-modified: Fri, 04 Jun 2021 08:10:01 GMT
etag: "60b9dfd9-f67"
expires: Mon, 29 May 2023 10:46:03 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uQdbAStKt64itaBi0TCmUTEcYmKbgOYiFM6fX2y4%2FJyF6GdPdVUc6j2DTvKEALcwBzUeGjZi0QcIJwqQxV2dZJ04rSZHXjezxwJEp%2FPooAOCrkrA%2BLHzJb%2BIw8RB4fQOJbI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce7857579a4fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/14.jpg

104.21.29.63

200 OK

4.2 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/14.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
4.2 kB (4206 bytes)
Hash
0b8103569ef7a42bb32e75cf1f44a107
abe1c9815b1935e70bdf4f8e7eb7b4da38ec0620
47213f9ed05defd742a141af9e1ddb90aba4e11318abe2817bf59942e3ecff12

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/14.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 4206
last-modified: Fri, 04 Jun 2021 08:10:01 GMT
etag: "60b9dfd9-106e"
expires: Mon, 29 May 2023 15:09:39 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FUf49qI4kkaQ4JxdV0jAZ3HY0gEqUzZfIgzpahsxv9AxT8QjVfDXnkDrFeMX5VV3nTtVOXvxJ3wa%2Fp8pSbNEi4fg7hmuJo%2FIcrV6uemUu6nfT8onBcPuLCoOVoMXMX63qoA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce7857579a2fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/15.jpg

104.21.29.63

200 OK

3.0 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/15.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.0 kB (3046 bytes)
Hash
252608fd7b9d0f6851a5ce13ce34d66c
c090849df3773a51222aca4294268edf3cd178fb
4b8ea48f1cda37c35a10445c0a45eb713799caa4ee2e93bac0a457830fda417f

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/15.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3046
last-modified: Fri, 04 Jun 2021 08:10:01 GMT
etag: "60b9dfd9-be6"
expires: Mon, 29 May 2023 15:09:39 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BJgWBxUQOKokz8LV2QnoME94lyX63Mu7nQi3tTdiKHUq73W0v9A9N%2Fpn2rrTz6TROwCVcsqEqUJQWKm4CCMHepQ3MWzQgjsJbjLL8ieumN2lhAiRr2ixrkVTLiREHvihmfI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce7857579a6fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/11.jpg

104.21.29.63

200 OK

3.6 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/11.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
3.6 kB (3564 bytes)
Hash
69d3d48eee9311b5301c1e325e2352ac
f7f15c0b5ee02ae7ba7abb739eb62ecd6efc4049
dc0616f58eef5987336ad46d9d8a2aebdfc106290637376b8c4e1c3fbe6a5b0b

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/11.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 3564
last-modified: Fri, 04 Jun 2021 08:10:00 GMT
etag: "60b9dfd8-dec"
expires: Sun, 28 May 2023 15:47:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A4W27Bcu74MGqIRsNmE07pOh4arpY5YXKaFlF1uCli1GBLiwzShi30MrgyqtPcqNryJ%2FkY2gElM461Zd9sOFWYjJvVbP4HX2hYc7IlGO%2FIWYt4tQ1FHWY1v%2Fi5k89ajZkLM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785756997fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/13.jpg

104.21.29.63

200 OK

4.2 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/13.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Size
4.2 kB (4163 bytes)
Hash
e5e2fb155bcfe4fc5b4e8b6b8572b80c
f6f19c322d5b7dd405a7b1ccde95a356131cb044
17dc27786e594ba932df16c2703f67e561baae48a6c43f3557add1cfc517f32b

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/13.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 4163
last-modified: Fri, 04 Jun 2021 08:10:01 GMT
etag: "60b9dfd9-1043"
expires: Mon, 29 May 2023 15:27:22 GMT
cache-control: max-age=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H8X4fpAOSAow3KX0RolqaL0cQbFIqugWy7bTkI2WEpYKMgCfwf%2Fv9pdQwPm7KjEAF5yHshUgYRacRK3HV7SIKGg2s7MTfRphQtmWFQWJc3tr%2BMRUobfEZg%2BROOgTDlSQATE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce7857579a7fab8-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.20.226

1.5 kB

URL
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
19243b6583971a0063082c5bb4c7e12d
098b7ff272aefd533ae8a0ac3781e2f9d77e7492
46dd5754075c3ea8fd34613b633d85e035deee7cf2ea6b44e09dd44faba18d87

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 28 May 2023 15:27:22 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B0EB2D3EB212ECE03219A6C361F5E9F09F07478F"
Expires: Mon, 29 May 2023 02:00:00 GMT
Last-Modified: Sun, 28 May 2023 14:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1252
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ce78576eff3069b-OSL

ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js

142.250.74.42

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (65451)
Size
31 kB (30768 bytes)
Hash
bbcf3bf05fa6cb58a67cfd0498f00d23
e4925196f6f444fa58915420fbcd80f909c68d28
0497a8d2a9bde7db8c0466fae73e347a3258192811ed1108e3e096d5f34ac0e8

HTTP Headers

GET /ajax/libs/jquery/3.4.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 May 2023 18:02:10 GMT
expires: Mon, 20 May 2024 18:02:10 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 595512
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/jornal.jpg

104.21.29.63

200 OK

48 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/jornal.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=200, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=141], progressive, precision 8, 141x200, components 3\012- data
Size
48 kB (47612 bytes)
Hash
3bc6fb1745f462dc2d8e821cd559c603
75f734080c631610267481870e9cf1210c2a0016
cbffc85c718c763d5a35bf36ba13a3575aad5776cef5b5c8269999fbcdd29153

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/jornal.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 47612
last-modified: Fri, 04 Jun 2021 08:10:04 GMT
etag: "60b9dfdc-b9fc"
expires: Sun, 28 May 2023 15:47:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g8qQPTUg%2BV7O2ZrbA3PFGWG0f0VdsQWQIIJh5sY0L6mTOGVofeFQWYyCDBO%2B8f3aQZ7veBl1khFxuIsQBCgvv7dUedJUDGfcNyGKIbpVmOskWipD2ZHB7XBqL6szmwY5D90%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785784bcffab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/comentsm.jpg

104.21.29.63

200 OK

837 B

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/comentsm.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 34x34, components 3\012- data
Size
837 B (837 bytes)
Hash
50e7b5d0d1543ce2fcde58916b3ad5a3
f2c7d330c8978dbcf898633a3029a78db38f9a71
083bbbd660a0924cca7b13eb5c872b86a8fcc311610afe9b59dc6d7f8f64237e

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/comentsm.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/form.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 837
last-modified: Fri, 04 Jun 2021 08:10:03 GMT
etag: "60b9dfdb-345"
expires: Mon, 29 May 2023 15:09:39 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IDJ1Cxl8j8fGtdmUMOC7AF1NM0jCgsbpyDFE2STmhzt%2F6NZBWqbYr4z5s5zmECdDZJkdzAqD4RPQKaX1Wq2dx3OyMgswjuue5SC35EQr5XXwRc41D0%2Fiv6lnr5Z57zSpLXk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785784bd6fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/formbg.jpg

104.21.29.63

200 OK

95 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/images/formbg.jpg
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 650x789, components 3\012- data
Size
95 kB (95355 bytes)
Hash
b2a8b23c1eccfcc4dd387054b88b9a04
28a7f1946b2c6c7eb392fb4ad4ca22d450f01b7b
d76f35ea4800922de6dcc829587ee03e20f00849a0c6c30fe08a12635a765e75

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/images/formbg.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/form.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: image/jpeg
content-length: 95355
last-modified: Fri, 04 Jun 2021 09:22:20 GMT
etag: "60b9f0cc-1747b"
expires: Mon, 29 May 2023 14:17:55 GMT
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UNnGVuTtuSZdd9kU3yR253ggEMubKOgf8I4Hp%2BZCwhCyIPyH3DlCuh8APDEjw%2FsvWlbF%2FWMFdPielfnPE5zNHwAkdI0U08das%2FPr1NW3%2BJW5qsJR5XwXHQxXUdvtKOmLRak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785784bd5fab8-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/orderForm.css

104.21.29.63

200 OK

3.6 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/orderForm.css
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (316), with CRLF line terminators
Size
3.6 kB (3580 bytes)
Hash
8a6e07eadf3d145682fb42077f15cb5d
e69a6e7c3bd18aa6e912ddc851ea1f1375d6b83b
3df34b6dbc9b8c78e8beaa30b33f934b4d6cf417186c4685c1737feedf3f1ac6

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/css/orderForm.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: text/css
last-modified: Fri, 04 Jun 2021 08:09:59 GMT
etag: W/"60b9dfd7-3b0b"
expires: Mon, 29 May 2023 10:39:11 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SLqibO7SYBPMHbfDEKwGoiH73bTkqXxDIiTJVhSsawAPF27myBQC%2FslEhlriy%2BIahsC4TEqF0FCn5SBIr4Y4yFPcl3AfJqHhK7kJXGVoJs8nOb7WGcRjHGWZ7Hhv%2BjY%2Fv58%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575194efab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bb63f1caaf551e76a88f326c8db516ce
513533cccfb522767abf37082518f766adc3c070
cfe2e32528181d9ff75d3946d789811d6d2c71e153c39aa72c0a586b922ebeb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

newsworld.cloud/js/back.js

104.21.29.63

200 OK

2.6 kB

URL GET HTTP/3
newsworld.cloud/js/back.js
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
2.6 kB (2580 bytes)
Hash
d00820ad09e4c241902e85bfa1f6e08a
e16e0de325f13677084f596fa198ca7694f1b06c
cf52e4b88e2562bcb1a85a6d8f43e48a50546c7e33cd649645390d46509c58d5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/back.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: application/javascript
last-modified: Tue, 26 Apr 2022 16:16:30 GMT
etag: W/"62681ade-1a7a"
expires: Mon, 29 May 2023 08:05:55 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 24867
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fZ3AdsjijzpfE0dSdzpPfBIa8bmTQgUU89laBEXzJdTD7JaF16AtIpskUHmXi2GubVbcA1f%2B62KiWCYQbe3PUVybi8PIZ27CVR8HM0WJGZWwhNILdsmlM6lc5ZxU3yVgbvA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785752956fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bb63f1caaf551e76a88f326c8db516ce
513533cccfb522767abf37082518f766adc3c070
cfe2e32528181d9ff75d3946d789811d6d2c71e153c39aa72c0a586b922ebeb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20356, version 1.0\012- data
Size
20 kB (20356 bytes)
Hash
e78568807d101b47dfd21e34244e072f
4cfc3c246e975c42ef684033a58afdacf8d5f54b
31535a91ce3f6b8ed3ddedadab1e49957e2220263a640df1a3f14f6fdfe15eb6

HTTP Headers

GET /s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsworld.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20356
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:56:22 GMT
expires: Wed, 22 May 2024 17:56:22 GMT
cache-control: public, max-age=31536000
age: 423061
last-modified: Tue, 02 May 2023 16:19:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Size
20 kB (20028 bytes)
Hash
2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087

HTTP Headers

GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsworld.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:49 GMT
expires: Thu, 23 May 2024 00:16:49 GMT
cache-control: public, max-age=31536000
age: 400234
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/js/modal.js

104.21.29.63

200 OK

24 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/js/modal.js
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
24 kB (23778 bytes)
Hash
580dd93128a162afc8c2449fe1fe2c65
96041ded2219b2ef958d6e1fd4e882d4c459a65b
2a3a5ccb75310a67dfce0ccdb2b53213a181a8dd699face764e4238528ed1150

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/js/modal.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: application/javascript
last-modified: Fri, 04 Jun 2021 08:10:07 GMT
etag: W/"60b9dfdf-2c47"
expires: Mon, 29 May 2023 15:27:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nWdnCiGi2bkf%2F4ZyCfF0RHUm8VkvzWTXlQGDrJO%2BILwTeraInuH2OWecpl26cRnwZKy9WrX9a7duew7TR5G8O%2Btw7NWsw2Jjf5vN1ZdV%2FHaRMeT9x0sNBd7ANfiV5AkyOUY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce7857579a8fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2

216.58.207.227

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19440, version 1.0\012- data
Size
19 kB (19440 bytes)
Hash
f9b6356e32a9b93ae0f1c23aa537f2a1
0cc73519d7b7fb4e4268727490205df48bd570f6
fff71a83690454ee6ea9014780a6797408918cb90cde1f0f3be65ea28a03c678

HTTP Headers

GET /s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsworld.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:40:25 GMT
expires: Wed, 22 May 2024 21:40:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 16:08:34 GMT
content-type: font/woff2
age: 409618
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19816, version 1.0\012- data
Size
20 kB (19816 bytes)
Hash
290160ea1f23d0178902ab8a62635b0a
5614266d1f6bf5f0d7601fff4a2bc0924830d983
f6b9eebb05461840790fc804b4590323ef12a57fe5af7fcdeed2d798e572844b

HTTP Headers

GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsworld.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:17:14 GMT
expires: Thu, 23 May 2024 00:17:14 GMT
cache-control: public, max-age=31536000
age: 400209
last-modified: Tue, 26 Apr 2022 16:08:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19740, version 1.0\012- data
Size
20 kB (19740 bytes)
Hash
101cf2a65d64322878605fa8472bb025
6dffc15e38c321e4bb567b4bd8107a2e8d97c61d
273c8613cdd2852dd5318f224d804ae6d2fc717c48d3f1dab587b6d396fb4fc8

HTTP Headers

GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsworld.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 03:18:14 GMT
expires: Sun, 26 May 2024 03:18:14 GMT
cache-control: public, max-age=31536000
age: 130149
last-modified: Tue, 26 Apr 2022 15:48:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 15:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

medical-room.site/click.php?clickid=undefined&event8=1

46.101.136.93

200 OK

20 B

URL GET HTTP/1.1
medical-room.site/click.php?clickid=undefined&event8=1
IP
46.101.136.93:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerLet's Encrypt
Subjectmedical-room.site
Fingerprint14:64:5A:9B:BD:DC:60:5A:C4:E8:DF:D8:11:EE:0B:2B:EE:2E:A9:59
ValidityMon, 24 Apr 2023 02:04:42 GMT - Sun, 23 Jul 2023 02:04:41 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /click.php?clickid=undefined&event8=1 HTTP/1.1
Host: medical-room.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 28 May 2023 15:27:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.binomstat.info/rediska.php?clickid=undefined&time_spent=6

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=6
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=6 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:29 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8jQZEBO9MMeRFpHybBL4D7cHHt8oEdO5NuMVfbA7bvfqhN%2FP2zDIjK0PHnIJl4bJlyqMboxK1PzLSUntA0Zl%2FvqccT3hcDHO%2FL8weiCyWEPanTJGnYXB7FOrcl5S5dX6GqEDQ5M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce7859f6eaa0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/form.css

104.21.29.63

200 OK

21 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/form.css
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type

Size
21 kB (20741 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/css/form.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: text/css
last-modified: Fri, 04 Jun 2021 09:22:39 GMT
etag: W/"60b9f0df-5105"
expires: Mon, 29 May 2023 15:09:39 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IhJXLBeHo1130FtqINJieZ11FnVsf28flJqotPvVN15uojh0dtkTymOXkXTKWrvzEg%2FYS3NoLK2qZ%2Fz4CaOLU6%2F%2Fk5GE4OsjlGLSX6jqk031VqhJXFbmWeKvjnzsWi%2FqHNk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785752954fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800

142.250.74.106

200 OK

14 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text
Size
14 kB (13760 bytes)
Hash
7a709864856437f60fe3b27060c983f2
734379d45cabaaefb479fd202b7bf9ff71bdb6ff
7556c220859e509cf18297cacd5f9348ea5a55b13392e59be1086064f7f0f7a4

HTTP Headers

GET /css?family=Open+Sans:300,400,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 May 2023 15:27:22 GMT
date: Sun, 28 May 2023 15:27:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.binomstat.info/rediska.php?clickid=undefined&time_spent=1

104.21.19.144

200 OK

0 B

URL GET HTTP/2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=1 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 May 2023 15:27:24 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lN9%2BtI4ZKpzo3vGnzH9UdZRlbEDGpIvwh09Yrr%2FMaVBu5wxsq4xZX5ax1XI8piZ%2BSeXOzDUwXJ3BwnIW%2BJCbkNCe%2BxXv63t95SDc35RwS3h%2Bn49%2BmVdu9E2hDVjD%2FmXw0I67ByE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785806f65b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

newsworld.cloud/js/binom.js

104.21.29.63

200 OK

4.1 kB

URL GET HTTP/3
newsworld.cloud/js/binom.js
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (4326), with no line terminators
Size
4.1 kB (4132 bytes)
Hash
7da953dece81656e1ede5e381c9a3d86
7269562e5e230c0b3e8b37fa098ea6ec4e34e8f4
6f3cf51149844516b49813209377fefd905f6bb942f91334791449422078c614

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/binom.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: application/javascript
last-modified: Fri, 17 Mar 2023 12:18:04 GMT
etag: W/"64145a7c-1024"
expires: Mon, 29 May 2023 08:05:55 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 24866
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tjzXgN5Jf98cuDp74GuWrmhGjicvcoy1HCStY3vV4ls3KVo3b8sn5gNJhvPqMZjA9wjf4XYrHKPM51%2FeCs6busCVDpCL8Ebx69OhH2vM%2BfAEjOMW1zA0Xs9DK3d7inQMBvE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce785751947fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=5

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=5
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=5 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:28 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TEjnMi8mKeNA24DUeFYp3%2BEGAu8jBz59U6XpVJvglyCAzVojXUFuTLKPHSeQFLubnPXpq%2BnLUg5Ac9AioF9EibK2bF%2FM8NmBpRVYnrphHFuhhGebUnvffvYnxmKzpdMKOaxJxA8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785992f9e0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=11

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=11
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=11 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:34 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q5dw24HHdxMykM%2FSZzBb8plcaSUVYj%2BCyHpfC640%2FcIhHAvibg%2FCeH%2BVv0ULjmSiUlCONMy8PsGPPBfFRN2kPHcpKcgsA81Epyxr3IHkzPAMw%2BSm92N6TCVh5fOyU%2B85QZJd4ew%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785beaa8e0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20064, version 1.0\012- data
Size
20 kB (20064 bytes)
Hash
767677e475131fa7d3f37880976bee39
386db54484cff1dfee2cbc4441ad790fe9829a6b
5ef914e59b0047a261844d96acabb60c34d3acab6b85ea24198726ce4781fd37

HTTP Headers

GET /s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://newsworld.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:56:19 GMT
expires: Wed, 22 May 2024 17:56:19 GMT
cache-control: public, max-age=31536000
age: 423064
last-modified: Tue, 02 May 2023 15:58:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.binomstat.info/rediska.php?clickid=undefined&time_spent=2

104.21.19.144

200 OK

0 B

URL GET HTTP/2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=2 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 May 2023 15:27:25 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zNsOQp7TQBiUqJ6iHy2HhUvdkFOrnvu8Mfi5%2BT9TSNVt0DezFN6HPr6%2Bchwt6zkOvWn9mwRjBlsfBZKOReQKev3ylsiXOpcCrJeG%2BXT6vF1Vw%2B0syPURs3iX%2B8C9I9WEynqiIS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce7858668f6b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.binomstat.info/rediska.php?clickid=undefined&time_spent=8

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=8
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=8 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:31 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BvfymIwEoVZPl%2FD8CNHVxbm%2FSKX1Wtls1LHl9zNTIdlTKuwC8ttUscMW6Z0Apw%2Fmh8BtKnHWKn0E1z6XE%2BlypD9Y95qMDCSUXNhENpBgvXxCUy%2Fs0DS%2FQ4xrGs67Crxk1nq%2FNSI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785abeecb0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/js/form_validate.js

104.21.29.63

200 OK

3.5 kB

URL GET HTTP/3
newsworld.cloud/js/form_validate.js
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (3466), with no line terminators
Size
3.5 kB (3505 bytes)
Hash
5da7940748519271f72f789402a89678
8555c02e49ec37267238e70fa2b5ef2a96c12fd5
4191c6d0ad8296db88745b135d2df612b50f9312fc0e98a74c025e68ce12f4b1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/form_validate.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: application/javascript
last-modified: Tue, 30 Nov 2021 09:51:44 GMT
etag: W/"61a5f430-db1"
expires: Mon, 29 May 2023 08:05:55 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 24866
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Iu78y7tjFupemJBry7PNFxK4t5XDl%2BMcPbtRtUZMtDaSkxiDPqCZ5Svd0jWGW7XTNPeI8%2B4%2BWMFZOZLF%2BYxudKuWAkohNzY3pVC6XZ%2B6cmfk7jrdUnVXz0XHmIvxZ8GmtC8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575194afab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/empty.ico

104.21.29.63

404 Not Found

248 B

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/empty.ico
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
248 B (248 bytes)
Hash
dba382a08b49ed1f2e296f7584163703
d80745177d5ea84b58efed09c92ca018f185cf6e
65ae8bbf2111ec1fa9fe63c333ad25d01c0b23ef3b38d3762495b3f8c22eb9a8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/empty.ico HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sun, 28 May 2023 15:27:23 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Amtpj5G9csElWqZoJYVbfT16VhrSmgbXk5GEjaPuOQBf50A3kEUL4DZR%2B54YIcTf4QCxaTVkjptkX74EW7K4p3yU5RKtoTMZ1nNaDIKoQu6ATjp2HXSnrp85yFJd3%2B28w%2BU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce7857afe76fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=12

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=12
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=12 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:35 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=snguZd00TTMtIBU3BAhBgB2NtJR1AISIm2ZcL%2FVl9ao04Izwo%2FGqXmPB8OSk0EMmfin0fG0y06HKzL5zjTK2XXlXeko3M414CXa59We3OyPnnn8PTIjfOIQryZhqEYujRuq6swA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785c4e9a50b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=7

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=7
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=7 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:30 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NaldGgCX5EADc8tJdqRIV0%2BuPWnm497WFbSyyh2GIERgJebfkiLfO30s%2FXVJ%2FZTf%2F2r8xrL7hFmwfy%2ByBLKD6E1JKyCnMXubHDqQ3c7fQoTtuvLE9GRMR3nTAx045thWNOOsWGI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785a5ae790b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=4

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=4
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=4 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:27 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qoI6tybW00v2nYB%2Bq2FJmfrlx%2FSTrvepittTU4G2eqqwD0jSUsJwyPPkvGQWRuF9QfIrIVLpX3%2BybK22tJCVFL9pVLIGBYTmkJf6QXOlLgBoCZQq7xZRFN584NZ96%2FK1NOmS%2FwU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce78592e8db0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/

104.21.29.63

200 OK

47 kB

URL User Request GET HTTP/2
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type

Size
47 kB (47153 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/ HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.29
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q6XTtEHVeKG2iq2D%2B67Rydmj96NjrJCwPrmbXAj%2FTDeTOTkXwkRXK%2FZDHzjaxnQEctWRNvHZDfK7HKmQsnNRusC7SOQpo16jHWpGHZuGSl4DlDDQm3eD3W7g9rJzLODlf8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce78572aaa3b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/index.css

104.21.29.63

200 OK

7.6 kB

URL GET HTTP/3
newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/files/css/index.css
IP
104.21.29.63:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8163), with no line terminators
Size
7.6 kB (7629 bytes)
Hash
930321f4ea4969d19f9ec2243aa524b2
3fbd8a1c7213eea81c3c368e99582118b0c9b630
73dbdb3549ded50e42c67b6ecbfef3db90f346a3848451406961b93bad5019f0

HTTP Headers

GET /cardiactive-ochishchenie-sosudov-form-de/files/css/index.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:22 GMT
content-type: text/css
last-modified: Fri, 04 Jun 2021 08:09:59 GMT
etag: W/"60b9dfd7-1dcd"
expires: Sun, 28 May 2023 18:51:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Io9V1E5YJPd8YCxaTFp4doJJKkadKL4Z3TwSYnHq6XQgxUv%2FAn%2Fg6Bc0gyMtkmgZdd5iw5O8DaWR89Zps1rjxy5i4dh1GaMUEUcUsTSLm%2Bq78aFtpVRwdtc2obZR4N8%2B3cg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce78575194dfab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Merriweather:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&display=swap

142.250.74.106

200 OK

15 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Merriweather:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text
Size
15 kB (15092 bytes)
Hash
2775dc7301803e6d435226346d8ddc58
42513c05c091cd07513d23d22be8c595e8a24ccc
2f1d9492d5f9b9e6b0955b4929a6a732d3f7c99ff9127b6a98df751d1053ca16

HTTP Headers

GET /css2?family=Merriweather:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 May 2023 15:27:22 GMT
date: Sun, 28 May 2023 15:27:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.binomstat.info/rediska.php?clickid=undefined&time_spent=13

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=13
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=13 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:36 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kt6Yrz%2BTV6naczo4WmRzXpWLSY3FweuQNXtm9qKAnV6xCIputPL5yRw8pnkMDrZ%2FCUc%2FfgUbS97t5Ip8qD2hHORqtl%2Bn0Kk7%2BtlvPWGndBymzzLHFkGIfq3U3LXPgttXGISidwI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785cb28250b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=9

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=9
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=9 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:32 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aBg1BSFLMn0NIrGIcwfMtPbX5W2YanOGBZiZFHXto1Bh%2BVnDz%2BzZve%2Bl%2F6HFvYq3v%2FNhNuopkVDr5Imat%2F0%2F7BClRAdxq6K6jtysWEGzNPKnaHrM64%2BnHrk42cE%2BV1ZSAHKxqjw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785b22d640b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=10

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=10
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=10 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:33 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=92kuTnOGLZkYI0j5zaoe2iS52TTb%2BpOU5UQkoRoiCLYg3wxtAuX%2BmlvrYYucqLk08iAWtEIr3aqVhdrtVLZxIRvbIY4w59Xv6GetlxPbdPXkPq6WBnMWXKGIs1NkEjSLIu0NYh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce785b86be50b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=3

104.21.19.144

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=3
IP
104.21.19.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=3 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 15:27:26 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rrrEemoBPUuFQfAbma7gt7NjaK0SPuqFPHKz7239LJ5olzTx0js9JYaKd9kYqgr1htwFdUZAYKCLN5AzC2DoMTCk6Xlj%2BwmldzWUjU6FS10JN0es2yDhWp2XrG%2FBrGQpGva8rAw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce7858ca9b30b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=IBM+Plex+Sans:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;1,200;1,300;1,400;1,500;1,600;1,700&display=swap

142.250.74.106

200 OK

26 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=IBM+Plex+Sans:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;1,200;1,300;1,400;1,500;1,600;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/cardiactive-ochishchenie-sosudov-form-de/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text
Size
26 kB (25962 bytes)
Hash
2385899c011f207f0e49334bdb6ae7c3
82fb649479627887654935f7c7a3e33deb16d1e3
ae007b654ec98c92ac3e270fa73e7aed8be3fa06ff69d6d21b36e7400f89f406

HTTP Headers

GET /css2?family=IBM+Plex+Sans:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;1,200;1,300;1,400;1,500;1,600;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 May 2023 15:27:22 GMT
date: Sun, 28 May 2023 15:27:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (71)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP