Report - newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/

Report Overview

Submitted URL
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
IP
172.67.148.132
ASN
#13335 CLOUDFLARENET
Submitted
2023-05-28 09:23:23
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-28	1.3 kB	2.8 kB	142.250.74.3
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2023-05-28	432 B	31 kB	142.250.74.138
medical-room.site	unknown	2020-04-06	2020-04-12	2023-05-27	429 B	257 B	46.101.136.93
www.binomstat.info	unknown	2022-04-27	2022-06-05	2023-05-27	5.7 kB	8.5 kB	172.67.186.125
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-28	902 B	19 kB	142.250.74.106
newsworld.cloud	unknown	2021-04-21	2021-04-21	2023-05-27	16 kB	1.5 MB	172.67.148.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-28	medium	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
2023-05-28	medium	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js
2023-05-28	medium	newsworld.cloud/js/binom.js
2023-05-28	medium	newsworld.cloud/js/form_validate.js
2023-05-28	medium	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js
2023-05-28	medium	newsworld.cloud/js/back.js
2023-05-28	medium	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/	520 B	2023-05-27	2023-09-20
Pretty URL newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/ IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-27 16:06:43 Last Seen2023-09-20 06:58:38 Times Seen4 Hash bfc55f21abf8e847da9d96451f573b85 ec98930e5aa229c7261dccaa9743fb4d83a248e8 de9ce40e4a5ea23d1041f141960cdc8c31c8846b552a77e84dda7b2da2d1c21f Loading...

	newsworld.cloud/js/binom.js	4.1 kB	2023-03-26	2023-09-20
Pretty URL newsworld.cloud/js/binom.js IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:52:56 Last Seen2023-09-20 06:58:38 Times Seen77 Hash 23eebd35c0df67458708791d9fb2da1f c3f807e94ce309ed459bfc270eab8fd1cc098c46 eb3d0b3ae3e4f3244cdedb18451348edd6f1e41b5c3be8aa5ea797b5c3e59848 Loading...

	newsworld.cloud/js/form_validate.js	3.5 kB	2023-03-07	2023-09-20
Pretty URL newsworld.cloud/js/form_validate.js IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:48 Last Seen2023-09-20 06:58:38 Times Seen90 Hash e5965c9bca6c2d3ac8d6b3ae2e28ab61 1ed9d92c678a35e868f87684acc4c6caec2c734f 325ae3ebc4e1521ef1111318510de7dcb1dca2ac479ca1bcf27162dd20c166b2 Loading...

	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js	11 kB	2023-03-07	2023-09-20
Pretty URL newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:08:17 Last Seen2023-09-20 06:58:38 Times Seen6 Hash dc95c0c7471f241a6d92f5f53f23ed6e 3477c7bc253943a61671a52d78a0d699ce2efae4 ea4226c2e30bc146580fa3ac735687f1e0563b9362b182ec6c28fbaeaefa4e57 Loading...

	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js	11 kB	2023-05-21	2023-09-20
Pretty URL newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 13:59:30 Last Seen2023-09-20 06:58:38 Times Seen6 Hash 2a4763cb9dae4e6daad8ef1c580f9285 2049a5017297d9f1d0fc89e505e71724762386dc ba02a49bd7c77fb18f613d38c6dd95e0187d786193dbc09c0e8b1c440186000e Loading...

	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js	353 B	2023-03-11	2023-09-20
Pretty URL newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:28:54 Last Seen2023-09-20 06:58:38 Times Seen10 Hash 1bfef6b0e15135f7da95c330c99a7595 628c8ffe495ac6ab198d602585cef074d9965530 aee93660483b8e90c0bf480b4f52e2c055f2f197d55708d6e0d5f7335573caee Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js	84 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-24 07:23:48 Times Seen14056 Hash 32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3 Loading...

	newsworld.cloud/js/back.js	6.8 kB	2023-03-07	2023-09-20
Pretty URL newsworld.cloud/js/back.js IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:48 Last Seen2023-09-20 06:58:38 Times Seen82 Hash d00820ad09e4c241902e85bfa1f6e08a e16e0de325f13677084f596fa198ca7694f1b06c cf52e4b88e2562bcb1a85a6d8f43e48a50546c7e33cd649645390d46509c58d5 Loading...

	newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/	171 B	2023-03-11	2023-09-20
Pretty URL newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/ IP 172.67.148.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 20:28:53 Last Seen2023-09-20 06:58:38 Times Seen8 Hash bd8c73eb4459cc09f71cb3d5043af1b6 d938685efed4039bd1a1789eaa558fbf90eae7dd 63bacb1b98b78333052e81595f505e2b4ac17e3f4c2f3de7792d5796c4830748 Loading...

		Size	First Seen	Last Seen
	#1 Write - 1c81923c7456d217ad184ea840275552	8 B	2023-05-27	2023-05-28
Pretty Observations First Seen2023-05-27 16:06:43 Last Seen2023-05-28 11:23:37 Times Seen2 Hash 1c81923c7456d217ad184ea840275552 7fc2de2df12756e45ff9e930060b5b8a912ebbd5 3ba85a35b04d446f0fbbae9f5821e856a8169314d3f250d27d71f25e4a7c6d13 Loading...

	#2 Write - 5531a5834816222280f20d1ef9e95f69	4 B	2023-03-12	2024-01-28
Pretty Observations First Seen2023-03-12 12:17:15 Last Seen2024-01-28 13:22:54 Times Seen21116 Hash 5531a5834816222280f20d1ef9e95f69 445cd2fd3273962bdf09425109a2d09f7170e837 d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f Loading...

HTTP Transactions (51)

URL IP Response Size

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/top_line_logo_mia.png

172.67.148.132

200 OK

1.8 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/top_line_logo_mia.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 113 x 19, 8-bit colormap, non-interlaced\012- data
Size
1.8 kB (1783 bytes)
Hash
df9a3f5228edd1cb03001f3af0cedd99
1e938d8712ab5a311d7d104633550bf1898d56e2
deb4e07a9ff46fbc47eec5b2e74bf703e0c1e4254861f3a64b49bf0593875897

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/top_line_logo_mia.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 1783
last-modified: Fri, 26 May 2023 08:08:08 GMT
etag: "647068e8-6f7"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4fJyNa2ReHTK4ei1GDcpho4I1mOkHTX3e5Vto1sFVyH0YmDA6YqrIxxXR7DQQk6NB7CqUMvsQpFWfffhm%2BgDXgb4AggiM0KuC1i5jtKtnZfYSkEDqnmOXN8DY4RuNAkRIv8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf6a0afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/header_bg.jpg

172.67.148.132

200 OK

7.2 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/header_bg.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 683x123, components 3\012- data
Size
7.2 kB (7216 bytes)
Hash
700b71d13ba9e24dcb2786d9198049c1
bfc8502ac6cbb5373c7adcc3fb89aa6affbdb19b
c722e550a1c316beabf3cd05fa2ad534b0c9f753255e7f691afbc9c5dfb2b60c

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/header_bg.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 7216
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-1c30"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FvBOi4e61otZMfo74oUANlWiKrcAmglJjd2j6iKKMk%2B0FnvzyuUGh%2Fy15TseoXiwYsMVdkvDmL%2BgZY%2BPWqlU6tWhtcoYeLsB9Xkt5bqZIt0r0pp6tnkvt0HnKkfENdrBtYI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf6c0afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/mia_logo.png

172.67.148.132

200 OK

4.3 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/mia_logo.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 315 x 101, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4296 bytes)
Hash
ade652eabc813fe1f6fb8957562260c3
6f5fcdd4620fabd0c2fdb76e2f4f391fa8c1e9cf
05b0a6c663b3c2975cf7f4a9b32936dc8d724f77528a51902ebc1edbfbdd5e93

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/mia_logo.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 4296
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-10c8"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vui4arPh5EFcYaIoQpBeWlMEw7ISNwo31uOBmTA7lNX2QAktXbrU0sHqKMCIQxbEWtGCfdXRCwtAbnTqnUw5sra43lORicMPMiQf4Bf6WKo3u8PUaPkRDX0xsTmtxz4eA%2Bo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf700afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-1.jpg

172.67.148.132

200 OK

24 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-1.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 605x430, components 3\012- data
Size
24 kB (24086 bytes)
Hash
5026930f767a379684a27cb17a84a3d7
45fa15168950074635e7b163dea2fa93cd5862a1
569fe8b1d939c40f0a5a8a38ae2d17f45d26b81a1ac1e4d275eda8187c33ac32

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 24086
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-5e16"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=voRgWiM8iRJJ51E0LJFHLHN3ry9gazr5PTxCZ1rnLESfhQ%2B7ys5EUZjUcy1R84p92E2Tg6CJob%2BSP9NTEkCNQH5iTQ8NL6GeZzU7Omet6YV%2BDMhmdfykA%2FU2ctaN5bC1Sh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf720afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-2.jpg

172.67.148.132

200 OK

31 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-2.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 643x386, components 3\012- data
Size
31 kB (31166 bytes)
Hash
f55826b70f7f30f70147c12b33aa2385
bcb5bac5be647fa7b405a684e110c7d5a78e065a
6bc9d9874ef0993a79ee1076074e4f1fe83d6fa5cd59e1479b4ad542948f3f09

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 31166
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-79be"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FqHvAtREzFa16u0rt9ghDuP6yvRLWVhrQ0hk%2BrurzCWIuIch2IlHa9CkPIMmNY8GVwuL7MJya8HSAnCbDtqJjEaz8BHbJc2kGlzeYPm%2F6Ty7SF6ywmz73D3a5fE3%2BWntf0A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf730afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-3.png

172.67.148.132

200 OK

24 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-3.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 310 x 303, 8-bit colormap, non-interlaced\012- data
Size
24 kB (23962 bytes)
Hash
26aeaea729d6ed98fc668475b92ed3aa
be8927d9c80d116c4bfdfa6df308c683cf0de847
6991be174640a24e5f1dcc922b896fbf120fec3c10f85e0a7ecb3d842d59d0d1

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-3.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 23962
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-5d9a"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j75lZL8uq6bCTM64hgsK86CaaXb%2BJPHAwYKzEzLTS3MG70y70XpDgbTGFSDuRHDDKLp6NpIwqeFQV2FxeFm7r6B9MnpLI6brN9PUM8qxEntWzKDF%2B7h2UHnQWpa53650bEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb50afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-4.jpg

172.67.148.132

200 OK

21 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-4.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 536x403, components 3\012- data
Size
21 kB (21097 bytes)
Hash
e9caf061c1e3887dc970d9eec722b2aa
353ae84da92003ab8b88f7734b8e74fc85789690
801bc995a3415c697ebe48c29da8331483a5f45e518c7177fdbe0338cd89e1ff

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-4.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 21097
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-5269"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OZHvJ79kKhS%2BMvAkEeqBU6ToCiFrpX5gFJrJKx%2B3Pte6GyGPUUTWWJ80psywooohkZaUIA8Dyu3pJpixSzgh6sGb2MBT5jxi62ugikk3kHC4q1sflbaKmOuCXahV62IYOyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb70afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/prizewheel.png

172.67.148.132

200 OK

19 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/prizewheel.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data
Size
19 kB (18730 bytes)
Hash
15b69cd23487385e5980689a593acc72
d44b0a0287cdd3592fe06f625612179c994520fb
3c25f62ab44f90c15b5173ca4dee11faed17b0df7d63bbe43e85536d90ae3b23

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/prizewheel.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 18730
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-492a"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rp54EnGOTp1cXu1J95YyyqA%2Bh9sjWjzYbgVDpmcd9Ci%2B%2BsYVrAmE7W%2BL2YObMgVxn5tCXuweSFPszQ4SDD5q2l35%2B1PWAai08WXTq%2FgQE68F72zFGLRCtl6jUh9FeiHbT40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb40afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/

172.67.148.132

200 OK

14 kB

URL User Request GET HTTP/2
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (667), with CRLF line terminators
Size
14 kB (14414 bytes)
Hash
b6667172e3b579faf0e58ed353623a93
c97907096703cabdd2b38c9edeaf707091b482ee
4402f64e0e33333d0725ada67a92448686a1747d5d019f3fdd08e0aaa7acc6ca

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/ HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.29
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=upwHC0v58U3nnJZjj6lUNG8wyFgr9zWDpexqt70yyO6P8JLh9WUPx%2FlnHjaQQ7Q7EgcjN4mqRMsmrYEt7dKn0TViyO8s0kQzQw%2BWSrsQq5FOmTDWirziy4JthHNlp2iKhD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe182d62b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/default_avatar_50x50(1).png

172.67.148.132

200 OK

334 B

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/default_avatar_50x50(1).png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 50 x 50, 8-bit grayscale, non-interlaced\012- data
Size
334 B (334 bytes)
Hash
48745380831fb97b8e9f9e5cfe178d27
41df16c94ccb77fc24f7ffb4fecf470bacd49063
c4c1472e6051e3cba3ebc95420a04b249e7ca47c3b7ce9ea76cb15ea6d09546d

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/default_avatar_50x50(1).png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 334
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-14e"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cd74gCTRnRs5XETGI5LBXZt24aTWrAHm6tWdNM3%2FEKae0JeSXJLg4Ik5S2%2FIYnMjJ8Xzfz8FPZXofiew%2Bdnez%2FeU9pvzbGO0zpEkuSTcE3c0G6UsZffhURK7DMVmS3QTwCU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb90afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/4_300.jpg

172.67.148.132

200 OK

6.9 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/4_300.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x175, components 3\012- data
Size
6.9 kB (6859 bytes)
Hash
b032614e99efe47451bf12db4c5bd028
06a5c0f65edc807b3f178e69c56b6ea5ac46c188
455f2992c0f34202d67cf99f0a9208a873d8ee8cb08e0f0deefcc0a0875b25b2

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/4_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 6859
last-modified: Fri, 26 May 2023 08:08:04 GMT
etag: "647068e4-1acb"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C%2FQ89vBO34RZO0BjqPKYsYAiCfQ0kHUSMo0BgmnULF98ppIAnHugNstDNZjSz8pfP%2FIFPVyTVfZt0HoGn0t4yRYX5J74TdIVf3nj7lsilDPqoLJ91P7mUkDhpsS9suBerWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fbb0afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/5_300.jpg

172.67.148.132

200 OK

7.5 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/5_300.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x175, components 3\012- data
Size
7.5 kB (7496 bytes)
Hash
0c3caa262f7f3612fb7010aecee42853
e95a51190951b450730d3d91288fe1c207b9a98b
6d50096a81deeb00051c044c158d479126e72f494e25c1456e66603e25717346

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/5_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 7496
last-modified: Fri, 26 May 2023 08:08:04 GMT
etag: "647068e4-1d48"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dLK04JFixANqDmv3iId4N%2BFLc9r98ZmLMJPPL7HE9fiq6Mzi8JCYBIDX1RqrGIg8yUtnD0e6qKV8u9cMyNfeWYllaflKVWQhJSRk5mODN8pNMimtj35A08iDiW%2B0TvUa%2Bcw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb80afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/1_300.jpg

172.67.148.132

200 OK

12 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/1_300.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x175, components 3\012- data
Size
12 kB (11525 bytes)
Hash
987f3348dcaae9df64e15d32708ef845
ea4dc1f4e2fda816e3a724911dff43cd920e8dd6
7cab6b554564d7f89de907295d400b209c0ba074e972964d983adaf0b0e5b64c

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/1_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 11525
last-modified: Fri, 26 May 2023 08:08:02 GMT
etag: "647068e2-2d05"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tqdZIdXwxp%2Foj4Q9BM3n4dprlCTnBPmJJpZX08L0WCAemSdQwv1fQU7Scpq5jzYwAiqfwODzJatp%2B0%2BVL9sTaDrPm83vuCeaQyHBXBwWllvijX8HsjneHBntwACYfYDBtYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fba0afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/2_300.jpg

172.67.148.132

200 OK

18 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/2_300.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.0.10], baseline, precision 8, 208x208, components 3\012- data
Size
18 kB (17739 bytes)
Hash
8c1353e2d0b582d431c22080e075bbf3
4590369b071a5e46356ffb97933a52a878fa9ff5
38019691120d3ed683d5213c83f807843d2fa2632f32666a6eda9bbf6bae22d4

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/2_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 17739
last-modified: Fri, 26 May 2023 08:08:03 GMT
etag: "647068e3-454b"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FJ9S34HaTRqiqB1BnGOADsKwt%2BTfYRhNaTL3uCKi1PEuMwwwF1hJgMK2HNpcm7ySH%2FgbsMXlJUThIS7VzaG%2F6RlsT5v%2FlMEje0zdSHzSDJRLriADtGbNHYlzrUWl621j9pg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc00afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/3_300.jpg

172.67.148.132

200 OK

8.5 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/3_300.jpg
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 208x208, components 3\012- data
Size
8.5 kB (8518 bytes)
Hash
193771bfaa75ed05e9695decab5f45f1
5d8d1bdb79b0ceac1d1d28007d42a1d0ed79dedb
ef403f1e2f68a73c61345e9cba0a89400860d50f9de860bf3e03718a517b8388

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/3_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 8518
last-modified: Fri, 26 May 2023 08:08:03 GMT
etag: "647068e3-2146"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HJ38%2FIq3WUljxqt7zx2stMwa3Gk2%2FDJKOJ1510Z56tGzSWXtRLp8xrCq2i%2Fg1X9CUhj89bly1zefcWP0R1fNPa2NtbTT%2FQ71MQ9uVFf5I9X%2Fk0V9nmyS71Wi3uAh0dC5aFk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc30afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/tov.png

172.67.148.132

200 OK

1.1 MB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/tov.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 464 x 515, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 MB (1116849 bytes)
Hash
b7f856bdc5ab8945b91f9e1117b7dcf5
42c30caffaaf5360b39c4d43c0fe69478be376cb
c7fd25226204cf99db5fa6efb58ae41e54693a89020bb392b3d50f297b015357

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/tov.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 1116849
last-modified: Fri, 26 May 2023 08:08:57 GMT
etag: "64706919-110ab1"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I22l8IE9A71GetyAKEqGtdqnTEMifO0q0rzBjD25808R4EusIbaELW952TPL5IruALk1s02ddvZV9wrgZpJpZZxMa652pQMibizGmsET6CBR7AH%2BJBxEmPvRnun%2BlELGBlA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1aef750afe-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js

142.250.74.138

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (32180)
Size
30 kB (29707 bytes)
Hash
32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:11:44 GMT
expires: Tue, 21 May 2024 16:11:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 489223
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js

172.67.148.132

200 OK

663 B

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
663 B (663 bytes)
Hash
1bfef6b0e15135f7da95c330c99a7595
628c8ffe495ac6ab198d602585cef074d9965530
aee93660483b8e90c0bf480b4f52e2c055f2f197d55708d6e0d5f7335573caee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 26 May 2023 08:08:12 GMT
etag: W/"647068ec-161"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZwC7C4xl045sv3vRSoGqNeqS1kYQjmlXbCPUg3mAhhmuHPBXBPbyC1yETPFPNzxCx92u2a6B39ye8dXGram8Jzrf1cvd%2BmyQG8zbwYjqiYFXdH49BiMDj%2FK20iSPrl3Vh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fbd0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

newsworld.cloud/js/binom.js

172.67.148.132

200 OK

6.5 kB

URL GET HTTP/3
newsworld.cloud/js/binom.js
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
6.5 kB (6480 bytes)
Hash
23eebd35c0df67458708791d9fb2da1f
c3f807e94ce309ed459bfc270eab8fd1cc098c46
eb3d0b3ae3e4f3244cdedb18451348edd6f1e41b5c3be8aa5ea797b5c3e59848

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/binom.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 17 Mar 2023 12:18:04 GMT
etag: W/"64145a7c-1024"
expires: Sun, 28 May 2023 08:04:29 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 84787
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ls6k3la%2FHyOkPuoshYQDoHCqnP9gaHwijOY4VVI54serzyLwtIAF14NSqqQo5Q1hVjcAuSnzUQei7B5jype1LBHSaFvx6Oq3lM%2BNWTZfFqujr5q1c70UAXw91Q0%2Fkfd91kQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b2fd70afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/js/form_validate.js

172.67.148.132

200 OK

10 kB

URL GET HTTP/3
newsworld.cloud/js/form_validate.js
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
10 kB (10246 bytes)
Hash
e5965c9bca6c2d3ac8d6b3ae2e28ab61
1ed9d92c678a35e868f87684acc4c6caec2c734f
325ae3ebc4e1521ef1111318510de7dcb1dca2ac479ca1bcf27162dd20c166b2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/form_validate.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Tue, 30 Nov 2021 09:51:44 GMT
etag: W/"61a5f430-db1"
expires: Sun, 28 May 2023 08:05:12 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 84787
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Va%2FvkYQ4r4WKqX3zJPvjOo3M8buZgrOWBTCLAhcnTA2l6X0kvo%2BOJRXVP0dgLoXDg9664zmMtJ%2B8CfOR2QYCekaO5hAmJ34Dhm6FzPZIJ1aYuHqY1jlyfxay8h1gSIyXf9s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b2fd30afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

medical-room.site/click.php?clickid=undefined&event8=1

46.101.136.93

200 OK

20 B

URL GET HTTP/1.1
medical-room.site/click.php?clickid=undefined&event8=1
IP
46.101.136.93:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerLet's Encrypt
Subjectmedical-room.site
Fingerprint14:64:5A:9B:BD:DC:60:5A:C4:E8:DF:D8:11:EE:0B:2B:EE:2E:A9:59
ValidityMon, 24 Apr 2023 02:04:42 GMT - Sun, 23 Jul 2023 02:04:41 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /click.php?clickid=undefined&event8=1 HTTP/1.1
Host: medical-room.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 28 May 2023 08:05:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.binomstat.info/rediska.php?clickid=undefined&time_spent=3

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=3
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=3 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:30 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=reSbxPS3YT25ZEp%2FvEAOZkwqMCSaVRpJKQv1nArtbr6IV8qs5Sa5CTWfwsXxHLr%2FJLQUPTstNf5Yb0yt7WovC7vaMK1o90NK2b02TffZU%2B0TZP5L5CVawYFSJSj%2B6NnZY1f9DvA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe30cc33b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=7

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=7
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=7 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:34 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qW4WtnG2h9zjN9T7yR4BRtUmPsX%2BVVtMR%2BeBMOV4nImUlgpK79zhlM%2BDNlAhFMkhaIb4Wjs2CRbKtYOD9PAe%2BG%2FUjsKg43dHi%2BL06LugtWO5jR5VYRvhGlaVlg3ZcYoaKeHOpPU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe49c8e6b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css

172.67.148.132

200 OK

71 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type

Size
71 kB (70589 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:00 GMT
etag: W/"647068e0-113bd"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=otqDnIRZeyAansqHr88PA8HW7XjboJ6IZlUSI%2BX0AdnQgHf1e2xMC6ORsLFtwAcSm%2FfRjRJ8hw5Vvv9pT70ztLQDfEKzODOcIA6pnA%2B6x%2BDX3u7BBPpi3JV2oE36imb0IXU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf5e0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,500,700,900

142.250.74.106

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text
Size
11 kB (10622 bytes)
Hash
1e960d07bf13260605883a5d201ccdb7
69ce96092d257837d6af401bcf8b11b3d2f74b3c
bbd133aaccc627dd11acf8545f051db9b1e00f4875ff6c7e89ab3509f9871ad3

HTTP Headers

GET /css?family=Roboto:300,400,500,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 May 2023 08:05:27 GMT
date: Sun, 28 May 2023 08:05:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.binomstat.info/rediska.php?clickid=undefined&time_spent=10

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=10
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=10 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:37 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FZsLWmGgu9ObBnoOoG3mcTSWcKDqiAI5ipYtw2q1lN8zRSxmhVe9zS1JRZgKVt70W2%2BjI2Uk1T03jbUOzohOpDk4uLAB%2BITlFbV2M%2Bd8SDCEZGaAnJ8CswCpCyrSilpDrdG1XSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe5c8b86b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/wheel-cursor.png

172.67.148.132

200 OK

2.5 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/wheel-cursor.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 158 x 158, 8-bit colormap, non-interlaced\012- data
Size
2.5 kB (2531 bytes)
Hash
619d2440c3deaa1a0259497fcf031230
ef05e68d91e9680ee356c94d53b33a3595ee220a
39a06b6a561b9c1e915b5563b991eb40fe0f592b2a637c0d73e864cda93b71cc

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/wheel-cursor.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 2531
last-modified: Fri, 26 May 2023 08:08:08 GMT
etag: "647068e8-9e3"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9K8OVoD%2FEh5UinKg6xBaXZwXGpKpYgcxAxYAQLRMuQhR7NKdwrp87kecM1kBLo8Gtb03e80A6ZNwAvPyZjoUcBGirVQThItHRo7fE9f%2Bh8RdF7SzdbA1NjNqp1wU2kCnxSQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb60afe-OSL
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/orderForm.css

172.67.148.132

200 OK

15 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/orderForm.css
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type

Size
15 kB (14989 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/css/orderForm.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:00 GMT
etag: W/"647068e0-3a8d"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5mk%2F7g9v1G3xCCUY%2FoH8ua5K6tXdNgstzwQ7rHVp2XwdJOgTwz7m6AKt96XF%2Fs2QNhxa2r9rGEQWl0QCEM6oFlZuWOun%2F1zPTmq6VPHKmb9Oo7wwwgUmckmImRa7eQrzrKI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc50afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=9

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=9
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=9 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:36 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YWc1lvbIV%2BcP3ga3Qg45oF9%2F4MhoHvYD6SG7bV8%2FgzEsNnMbYvpCgWlZFPGY0WytC%2FRPnLQsqRXr%2Fy9NOArH1X6fUcvpFuNelJi8EuIQyJbCb8AZk0Fq3VYcPO7oXVjxK4x2XfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe5649d6b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.css

172.67.148.132

200 OK

7.0 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.css
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7713), with no line terminators
Size
7.0 kB (7047 bytes)
Hash
0d439a3ee15bf074428b30259245d250
434440814c62bfff3f2c62183152df79cd2e2596
5fe8f8d30792ef17f9ecbc25951cff8b26f6c7a3da930c3e8a145a8e4b228661

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:11 GMT
etag: W/"647068eb-1b87"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bQgOt9PcIzhJUSv%2Fknrrfgr8X3fu9elUZ0EgR1L%2Fgp0NNvdPTy87yRbCIix2ReS1BEkMPaIy38YtQZy891PmruWPi%2Bn8Gkl%2FIPY69EVxCSruYMLNR%2F%2FOAM8zjpbfQIZFoaU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc60afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=11

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=11
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=11 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:38 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8WaGHwTW%2F%2Fidcck98W1hBsK9iBCZApVwdMalBH1DkoUJ3OPDqB5JUk0enpfO2onGdflhRinht%2FMfwUN2H69lKS7d9KfkH5DaMvIHMiVTBqdWSxFGkI%2FFoOr6pbtRZPlbJPjQCVA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe62cba9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/ico-sa331de8fd1.png

172.67.148.132

200 OK

5.3 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/ico-sa331de8fd1.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 70 x 1968, 8-bit colormap, non-interlaced\012- data
Size
5.3 kB (5277 bytes)
Hash
ec4240cc0984ec21272c0995f1de2eae
eb44b233384ad942cd9f98f55064dbbcabd7346a
6404710617c3f15781c6dd740cfc445fb517313678e993f1115c9c3a26660c0f

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/ico-sa331de8fd1.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:27 GMT
content-type: image/png
content-length: 5277
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-149d"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qfLP17XU2WTl33bUBbunuGWZAnQIyZWyymmChvKKK6pMoWHh7jpmFCR1vjlKq03K5MHMY4JdaqatCm6rj%2FoWWhFpYhT3POCY3TaAvyWTjHogxgghGHsZa6sJxHXpmBUtUp8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1d29b30afe-OSL
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=4

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=4
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=4 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:31 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zvDIhQVfPBBvvFYjIc1wMxAh3K5uWADuwQVeXhU%2BhJt%2FP4LvVxPCSrNmcfv8Vv8oOnRJznSJjEJdQqIYkU3qZ%2FJZXwClXWV9exgXCFY7zAybR6m%2FxgcJOwOaCV0962SmHB8d9NM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe370e8eb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=12

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=12
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=12 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:39 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MylJjRwemNtMZFFhqQpHZTfOGMPd%2Fj3nBMqvUaJSCcVKg1RzytGUwXYr7qnaSTBCfp1ULrkSePGp8oNgEyWVDS%2BoMjMxJEf1THf6jrVHbXYfwdUGY3g%2BX2i2qpUsjs4LCZC83rw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe690c32b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/l_all.css

172.67.148.132

200 OK

43 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/l_all.css
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type

Size
43 kB (42635 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/css/l_all.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:00 GMT
etag: W/"647068e0-a68b"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAY1t5R%2BzDLyMu7OCzOEhlL9KJFXxBkheCTVol9Mzx1qbM%2F8t0ZsjVGfJ%2BF%2BlcmoUbRSDKPTMoVJVYMQFF%2B%2F0UCJtiVpIq8MUlEX5rmPvXiOpfZ8LUz1SovNS6M3gXwxDVg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf610afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=5

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=5
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=5 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:32 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MRcJcTuFqOKPM9KvEAwRPEwTU5o9I6dFLQ4GvNexRWj4BRSAKxRYBEyMlFaxypinzt6TRpY9nJ4fEmQXkADSLf84%2FZXA1fgBCY29BeNzYjPfRXuMtQqPr5KiU3gMaPk3DBXc%2Fxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe3d4fd9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js

172.67.148.132

200 OK

11 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type

Size
11 kB (11335 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 26 May 2023 08:08:10 GMT
etag: W/"647068ea-2c47"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N1Ahn8nszax7ZKXxsbuhnRsXEosMm%2B%2FkCLoLt0su2PYHlo2Xe4vrG%2Fs87TQgznT137uXzU9KKyFcnHhXo3Gs9GhIZIKbeqCSmk7dXom38vVeFAO0Z3BY3Rh%2ByqhpFZP78JE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fbe0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/social-ico-s508f28af8b.png

172.67.148.132

200 OK

8.9 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/social-ico-s508f28af8b.png
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 25 x 2840, 8-bit colormap, non-interlaced\012- data
Size
8.9 kB (8880 bytes)
Hash
d2222916328b29c022f53f53f01f9842
0c4112bd4b3e90b2858b6c6d84197be8812905b0
4b7b3fd23794fc9d37884722a9772636511d0fa01e901c283276fd9cfa9ac60b

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/social-ico-s508f28af8b.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:27 GMT
content-type: image/png
content-length: 8880
last-modified: Fri, 26 May 2023 08:08:08 GMT
etag: "647068e8-22b0"
expires: Sun, 28 May 2023 13:08:51 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 64743
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PQfkU4GlKbRFbYSFTS5BLbiy070KgpASZCG%2FnQHUmjI5AvKmrX54IC00UBjIn836cILyMY%2FmOEyWCpdbqsoBJeoVC0kKp2oK0gEakn1vYWvXukmKuH6cnIGEHXIA9YB22%2BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1d29bd0afe-OSL
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=8

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=8
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=8 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:35 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6BwLNXiXHSf7DJKZU1fT2g3mYKCwlxXDx0Z%2BIm1LQ1O0SKbjFDyxPiCxmLbWo9LvQdgosl%2Fh0p7xa27jyKPsrFhDNdC4aZTrIyEW2bd9w0aGbiHWS9cYAAovTQTQDk8xYsXRYrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe50095bb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

newsworld.cloud/js/back.js

172.67.148.132

200 OK

6.8 kB

URL GET HTTP/3
newsworld.cloud/js/back.js
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (6954), with no line terminators
Size
6.8 kB (6778 bytes)
Hash
2e4694b29859fd7d2b65eefae3dfc929
6105bf97b36a1dbd4a4f260781eb0330d42a90ab
37fe5a70c2321103fb0b59e07cea8688b2a473385f5205f2427aff524ef51bda

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/back.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Tue, 26 Apr 2022 16:16:30 GMT
etag: W/"62681ade-1a7a"
expires: Sun, 28 May 2023 08:04:40 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 84787
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OfoTuuauIwbLI5N%2F0542miiLugm%2BcbeLI5vB8alLBg5EbZN3pTW4FyRAgOOJk0lRqvP70SD6YQpHg%2FspyEPppu%2BOSLaXVWypQ%2FO6uC9RuONq%2F0nlGqqhqI6jSDc6d7Uy0us%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf670afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700

142.250.74.106

200 OK

7.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (7205), with no line terminators
Size
7.0 kB (7037 bytes)
Hash
181654adae1b0c1fc01ac8a1dd6d20bb
b17db82d61f0fc09ae0c6dd9e1f5c09568889bd1
14cf6b095ca053ec3915bd76f4f9bc1825d403eb5d34b9db0b41490e99e9aee7

HTTP Headers

GET /css?family=Roboto+Condensed:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 May 2023 08:05:27 GMT
date: Sun, 28 May 2023 08:05:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/favicon.ico

172.67.148.132

200 OK

677 B

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/favicon.ico
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
677 B (677 bytes)
Hash
5cbef12930e41245e7310db167295a76
6288aa948bbfca6e07ac3ebdcfd478f38732adb9
7f042fdb4cd419a426b7b0359ec28b59fbf9680803c0bcf9014005599b134ebd

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/favicon.ico HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:27 GMT
content-type: image/vnd.microsoft.icon
last-modified: Fri, 26 May 2023 08:07:59 GMT
etag: W/"2a5-5fc943c35619b"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q%2BFBQcT8FxbjvvMf5j8TXLA%2BfGdSGzG4oIes7bMZaX6yigtK%2F3xmnO%2BqzsiTQeRwWt8lv%2BVKlPGjY6kZsXULe2etwhH1MpJZRdMCiBomAmKHD0%2FfNwgY2HBdWcF7Y6Bsaig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1dfb7c0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=2

172.67.186.125

200 OK

0 B

URL GET HTTP/2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=2 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 May 2023 08:05:29 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MdvvxdwLD2DcNNYwey6FUPYEZoJcgxGEr1aD4c28dNXa4LdgrrbBLCm1I30bjIgqv%2F%2B0%2Fgta7i7HZLp3NnW5gt7%2BzI44c6%2BoKeDK45RXHnaIgs30UHPlRJ2r1mnqjM40%2FXhpY%2Bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe2a8878b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.binomstat.info/rediska.php?clickid=undefined&time_spent=6

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=6
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=6 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:33 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cZDOI8CixpRYetQhOGwUeboY7vlUhbOAiAqbrf4swaF7eAbenciX39x9WSZTQPAY5t5AE1X%2B5%2BtMmPOFEKoW838VKJAYNYHNpVbxEJGFyIDpiZP%2Fc%2Brbq0hhQChNGXuXjgfoUq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe4388b3b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=13

172.67.186.125

200 OK

0 B

URL GET HTTP/3
www.binomstat.info/rediska.php?clickid=undefined&time_spent=13
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=13 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:40 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=anLNxddV%2B%2FF14mjcUH3DEjJ6SszxUWoXQDfLvyyODqSLBnDfbpHEiPIf7c%2BM6qfMdZ4dPg5D1BSuYbHxf8hIdziYbnxpR8sAba7U7%2FTGw0Od0QOFJRxE2Tx49eqlWMWvCd7wOUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe6f4d76b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.binomstat.info/rediska.php?clickid=undefined&time_spent=1

172.67.186.125

200 OK

0 B

URL GET HTTP/2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
IP
172.67.186.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rediska.php?clickid=undefined&time_spent=1 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 May 2023 08:05:28 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rawz48YZTA1KlT9lIvE1oR%2F0F2p0Rcew2Lr%2BUiHePFPyYs%2F7eWUZHhr%2F73USsYczEB9MNBMQQHvmyInWaXz%2Bq2tlGR7yPQoFifYhqeuip1Ak1aetg7NE55zJc2baMuTOUGcj7Eo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe258a6cb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js

172.67.148.132

200 OK

12 kB

URL GET HTTP/3
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js
IP
172.67.148.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type

Size
12 kB (11471 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 26 May 2023 08:08:09 GMT
etag: W/"647068e9-2ccf"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQUr9OxwDvnU9TnyjV9d6CoxJlf9Ww4X1wZiXP1exrqB4MLZa9RItu6RbzzZGXYepFFY%2B%2Fhe4qGo6adJ8wOP%2F1rOXs2QhTTpo6nlTXc%2BohqTU7%2BINtLjceHYQXGUfzN5zBc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc10afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML