newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/top_line_logo_mia.png
172.67.148.132200 OK 1.8 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/top_line_logo_mia.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 113 x 19, 8-bit colormap, non-interlaced\012- data
Hash df9a3f5228edd1cb03001f3af0cedd99
1e938d8712ab5a311d7d104633550bf1898d56e2
deb4e07a9ff46fbc47eec5b2e74bf703e0c1e4254861f3a64b49bf0593875897
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/top_line_logo_mia.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 1783
last-modified: Fri, 26 May 2023 08:08:08 GMT
etag: "647068e8-6f7"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4fJyNa2ReHTK4ei1GDcpho4I1mOkHTX3e5Vto1sFVyH0YmDA6YqrIxxXR7DQQk6NB7CqUMvsQpFWfffhm%2BgDXgb4AggiM0KuC1i5jtKtnZfYSkEDqnmOXN8DY4RuNAkRIv8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf6a0afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/header_bg.jpg
172.67.148.132200 OK 7.2 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/header_bg.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 683x123, components 3\012- data
Hash 700b71d13ba9e24dcb2786d9198049c1
bfc8502ac6cbb5373c7adcc3fb89aa6affbdb19b
c722e550a1c316beabf3cd05fa2ad534b0c9f753255e7f691afbc9c5dfb2b60c
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/header_bg.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 7216
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-1c30"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FvBOi4e61otZMfo74oUANlWiKrcAmglJjd2j6iKKMk%2B0FnvzyuUGh%2Fy15TseoXiwYsMVdkvDmL%2BgZY%2BPWqlU6tWhtcoYeLsB9Xkt5bqZIt0r0pp6tnkvt0HnKkfENdrBtYI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf6c0afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/mia_logo.png
172.67.148.132200 OK 4.3 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/mia_logo.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 315 x 101, 8-bit colormap, non-interlaced\012- data
Hash ade652eabc813fe1f6fb8957562260c3
6f5fcdd4620fabd0c2fdb76e2f4f391fa8c1e9cf
05b0a6c663b3c2975cf7f4a9b32936dc8d724f77528a51902ebc1edbfbdd5e93
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/mia_logo.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 4296
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-10c8"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vui4arPh5EFcYaIoQpBeWlMEw7ISNwo31uOBmTA7lNX2QAktXbrU0sHqKMCIQxbEWtGCfdXRCwtAbnTqnUw5sra43lORicMPMiQf4Bf6WKo3u8PUaPkRDX0xsTmtxz4eA%2Bo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf700afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-1.jpg
172.67.148.132200 OK 24 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-1.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 605x430, components 3\012- data
Hash 5026930f767a379684a27cb17a84a3d7
45fa15168950074635e7b163dea2fa93cd5862a1
569fe8b1d939c40f0a5a8a38ae2d17f45d26b81a1ac1e4d275eda8187c33ac32
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 24086
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-5e16"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=voRgWiM8iRJJ51E0LJFHLHN3ry9gazr5PTxCZ1rnLESfhQ%2B7ys5EUZjUcy1R84p92E2Tg6CJob%2BSP9NTEkCNQH5iTQ8NL6GeZzU7Omet6YV%2BDMhmdfykA%2FU2ctaN5bC1Sh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf720afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-2.jpg
172.67.148.132200 OK 31 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-2.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 643x386, components 3\012- data
Hash f55826b70f7f30f70147c12b33aa2385
bcb5bac5be647fa7b405a684e110c7d5a78e065a
6bc9d9874ef0993a79ee1076074e4f1fe83d6fa5cd59e1479b4ad542948f3f09
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 31166
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-79be"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FqHvAtREzFa16u0rt9ghDuP6yvRLWVhrQ0hk%2BrurzCWIuIch2IlHa9CkPIMmNY8GVwuL7MJya8HSAnCbDtqJjEaz8BHbJc2kGlzeYPm%2F6Ty7SF6ywmz73D3a5fE3%2BWntf0A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf730afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-3.png
172.67.148.132200 OK 24 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-3.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 310 x 303, 8-bit colormap, non-interlaced\012- data
Hash 26aeaea729d6ed98fc668475b92ed3aa
be8927d9c80d116c4bfdfa6df308c683cf0de847
6991be174640a24e5f1dcc922b896fbf120fec3c10f85e0a7ecb3d842d59d0d1
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-3.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 23962
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-5d9a"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j75lZL8uq6bCTM64hgsK86CaaXb%2BJPHAwYKzEzLTS3MG70y70XpDgbTGFSDuRHDDKLp6NpIwqeFQV2FxeFm7r6B9MnpLI6brN9PUM8qxEntWzKDF%2B7h2UHnQWpa53650bEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb50afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-4.jpg
172.67.148.132200 OK 21 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-4.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 536x403, components 3\012- data
Hash e9caf061c1e3887dc970d9eec722b2aa
353ae84da92003ab8b88f7734b8e74fc85789690
801bc995a3415c697ebe48c29da8331483a5f45e518c7177fdbe0338cd89e1ff
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/content-4.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 21097
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-5269"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OZHvJ79kKhS%2BMvAkEeqBU6ToCiFrpX5gFJrJKx%2B3Pte6GyGPUUTWWJ80psywooohkZaUIA8Dyu3pJpixSzgh6sGb2MBT5jxi62ugikk3kHC4q1sflbaKmOuCXahV62IYOyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb70afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/prizewheel.png
172.67.148.132200 OK 19 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/prizewheel.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data
Hash 15b69cd23487385e5980689a593acc72
d44b0a0287cdd3592fe06f625612179c994520fb
3c25f62ab44f90c15b5173ca4dee11faed17b0df7d63bbe43e85536d90ae3b23
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/prizewheel.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 18730
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-492a"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rp54EnGOTp1cXu1J95YyyqA%2Bh9sjWjzYbgVDpmcd9Ci%2B%2BsYVrAmE7W%2BL2YObMgVxn5tCXuweSFPszQ4SDD5q2l35%2B1PWAai08WXTq%2FgQE68F72zFGLRCtl6jUh9FeiHbT40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb40afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
172.67.148.132200 OK 14 kB URL User Request GET HTTP/2 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
IP 172.67.148.132:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (667), with CRLF line terminators
Hash b6667172e3b579faf0e58ed353623a93
c97907096703cabdd2b38c9edeaf707091b482ee
4402f64e0e33333d0725ada67a92448686a1747d5d019f3fdd08e0aaa7acc6ca
Analyzer Verdict Alert fortinet Malware
GET /revita-lt-poten-urologizuniversiteta2-koleso/ HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.29
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=upwHC0v58U3nnJZjj6lUNG8wyFgr9zWDpexqt70yyO6P8JLh9WUPx%2FlnHjaQQ7Q7EgcjN4mqRMsmrYEt7dKn0TViyO8s0kQzQw%2BWSrsQq5FOmTDWirziy4JthHNlp2iKhD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe182d62b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/default_avatar_50x50(1).png
172.67.148.132200 OK 334 B URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/default_avatar_50x50(1).png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 50 x 50, 8-bit grayscale, non-interlaced\012- data
Hash 48745380831fb97b8e9f9e5cfe178d27
41df16c94ccb77fc24f7ffb4fecf470bacd49063
c4c1472e6051e3cba3ebc95420a04b249e7ca47c3b7ce9ea76cb15ea6d09546d
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/default_avatar_50x50(1).png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 334
last-modified: Fri, 26 May 2023 08:08:06 GMT
etag: "647068e6-14e"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cd74gCTRnRs5XETGI5LBXZt24aTWrAHm6tWdNM3%2FEKae0JeSXJLg4Ik5S2%2FIYnMjJ8Xzfz8FPZXofiew%2Bdnez%2FeU9pvzbGO0zpEkuSTcE3c0G6UsZffhURK7DMVmS3QTwCU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb90afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/4_300.jpg
172.67.148.132200 OK 6.9 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/4_300.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x175, components 3\012- data
Hash b032614e99efe47451bf12db4c5bd028
06a5c0f65edc807b3f178e69c56b6ea5ac46c188
455f2992c0f34202d67cf99f0a9208a873d8ee8cb08e0f0deefcc0a0875b25b2
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/4_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 6859
last-modified: Fri, 26 May 2023 08:08:04 GMT
etag: "647068e4-1acb"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C%2FQ89vBO34RZO0BjqPKYsYAiCfQ0kHUSMo0BgmnULF98ppIAnHugNstDNZjSz8pfP%2FIFPVyTVfZt0HoGn0t4yRYX5J74TdIVf3nj7lsilDPqoLJ91P7mUkDhpsS9suBerWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fbb0afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/5_300.jpg
172.67.148.132200 OK 7.5 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/5_300.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x175, components 3\012- data
Hash 0c3caa262f7f3612fb7010aecee42853
e95a51190951b450730d3d91288fe1c207b9a98b
6d50096a81deeb00051c044c158d479126e72f494e25c1456e66603e25717346
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/5_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 7496
last-modified: Fri, 26 May 2023 08:08:04 GMT
etag: "647068e4-1d48"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dLK04JFixANqDmv3iId4N%2BFLc9r98ZmLMJPPL7HE9fiq6Mzi8JCYBIDX1RqrGIg8yUtnD0e6qKV8u9cMyNfeWYllaflKVWQhJSRk5mODN8pNMimtj35A08iDiW%2B0TvUa%2Bcw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb80afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/1_300.jpg
172.67.148.132200 OK 12 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/1_300.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x175, components 3\012- data
Hash 987f3348dcaae9df64e15d32708ef845
ea4dc1f4e2fda816e3a724911dff43cd920e8dd6
7cab6b554564d7f89de907295d400b209c0ba074e972964d983adaf0b0e5b64c
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/1_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 11525
last-modified: Fri, 26 May 2023 08:08:02 GMT
etag: "647068e2-2d05"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tqdZIdXwxp%2Foj4Q9BM3n4dprlCTnBPmJJpZX08L0WCAemSdQwv1fQU7Scpq5jzYwAiqfwODzJatp%2B0%2BVL9sTaDrPm83vuCeaQyHBXBwWllvijX8HsjneHBntwACYfYDBtYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fba0afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/2_300.jpg
172.67.148.132200 OK 18 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/2_300.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.0.10], baseline, precision 8, 208x208, components 3\012- data
Hash 8c1353e2d0b582d431c22080e075bbf3
4590369b071a5e46356ffb97933a52a878fa9ff5
38019691120d3ed683d5213c83f807843d2fa2632f32666a6eda9bbf6bae22d4
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/2_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 17739
last-modified: Fri, 26 May 2023 08:08:03 GMT
etag: "647068e3-454b"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FJ9S34HaTRqiqB1BnGOADsKwt%2BTfYRhNaTL3uCKi1PEuMwwwF1hJgMK2HNpcm7ySH%2FgbsMXlJUThIS7VzaG%2F6RlsT5v%2FlMEje0zdSHzSDJRLriADtGbNHYlzrUWl621j9pg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc00afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/3_300.jpg
172.67.148.132200 OK 8.5 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/3_300.jpg
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 208x208, components 3\012- data
Hash 193771bfaa75ed05e9695decab5f45f1
5d8d1bdb79b0ceac1d1d28007d42a1d0ed79dedb
ef403f1e2f68a73c61345e9cba0a89400860d50f9de860bf3e03718a517b8388
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/3_300.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/jpeg
content-length: 8518
last-modified: Fri, 26 May 2023 08:08:03 GMT
etag: "647068e3-2146"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HJ38%2FIq3WUljxqt7zx2stMwa3Gk2%2FDJKOJ1510Z56tGzSWXtRLp8xrCq2i%2Fg1X9CUhj89bly1zefcWP0R1fNPa2NtbTT%2FQ71MQ9uVFf5I9X%2Fk0V9nmyS71Wi3uAh0dC5aFk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc30afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/tov.png
172.67.148.132200 OK 1.1 MB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/tov.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 464 x 515, 8-bit/color RGBA, non-interlaced\012- data
Size 1.1 MB (1116849 bytes)
Hash b7f856bdc5ab8945b91f9e1117b7dcf5
42c30caffaaf5360b39c4d43c0fe69478be376cb
c7fd25226204cf99db5fa6efb58ae41e54693a89020bb392b3d50f297b015357
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/tov.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 1116849
last-modified: Fri, 26 May 2023 08:08:57 GMT
etag: "64706919-110ab1"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I22l8IE9A71GetyAKEqGtdqnTEMifO0q0rzBjD25808R4EusIbaELW952TPL5IruALk1s02ddvZV9wrgZpJpZZxMa652pQMibizGmsET6CBR7AH%2BJBxEmPvRnun%2BlELGBlA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1aef750afe-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.138200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.138:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (32180)
Hash 32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:11:44 GMT
expires: Tue, 21 May 2024 16:11:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 489223
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js
172.67.148.132200 OK 663 B URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 1bfef6b0e15135f7da95c330c99a7595
628c8ffe495ac6ab198d602585cef074d9965530
aee93660483b8e90c0bf480b4f52e2c055f2f197d55708d6e0d5f7335573caee
Analyzer Verdict Alert fortinet Malware
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 26 May 2023 08:08:12 GMT
etag: W/"647068ec-161"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZwC7C4xl045sv3vRSoGqNeqS1kYQjmlXbCPUg3mAhhmuHPBXBPbyC1yETPFPNzxCx92u2a6B39ye8dXGram8Jzrf1cvd%2BmyQG8zbwYjqiYFXdH49BiMDj%2FK20iSPrl3Vh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fbd0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 5eb2d0db01496946784367a1c6a22c28
2d0a58aa819ca13f208af62e0c21996bd123de9f
8c16e79ed32ccf5baf793a07ad6128fa85ea0f0877da7da7145ae6a33e811a1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 08:05:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
newsworld.cloud/js/binom.js
172.67.148.132200 OK 6.5 kB URL GET HTTP/3 newsworld.cloud/js/binom.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 23eebd35c0df67458708791d9fb2da1f
c3f807e94ce309ed459bfc270eab8fd1cc098c46
eb3d0b3ae3e4f3244cdedb18451348edd6f1e41b5c3be8aa5ea797b5c3e59848
Analyzer Verdict Alert fortinet Malware
GET /js/binom.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 17 Mar 2023 12:18:04 GMT
etag: W/"64145a7c-1024"
expires: Sun, 28 May 2023 08:04:29 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 84787
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ls6k3la%2FHyOkPuoshYQDoHCqnP9gaHwijOY4VVI54serzyLwtIAF14NSqqQo5Q1hVjcAuSnzUQei7B5jype1LBHSaFvx6Oq3lM%2BNWTZfFqujr5q1c70UAXw91Q0%2Fkfd91kQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b2fd70afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/js/form_validate.js
172.67.148.132200 OK 10 kB URL GET HTTP/3 newsworld.cloud/js/form_validate.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash e5965c9bca6c2d3ac8d6b3ae2e28ab61
1ed9d92c678a35e868f87684acc4c6caec2c734f
325ae3ebc4e1521ef1111318510de7dcb1dca2ac479ca1bcf27162dd20c166b2
Analyzer Verdict Alert fortinet Malware
GET /js/form_validate.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Tue, 30 Nov 2021 09:51:44 GMT
etag: W/"61a5f430-db1"
expires: Sun, 28 May 2023 08:05:12 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 84787
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Va%2FvkYQ4r4WKqX3zJPvjOo3M8buZgrOWBTCLAhcnTA2l6X0kvo%2BOJRXVP0dgLoXDg9664zmMtJ%2B8CfOR2QYCekaO5hAmJ34Dhm6FzPZIJ1aYuHqY1jlyfxay8h1gSIyXf9s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b2fd30afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
medical-room.site/click.php?clickid=undefined&event8=1
46.101.136.93200 OK 20 B URL GET HTTP/1.1 medical-room.site/click.php?clickid=undefined&event8=1
IP 46.101.136.93:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerLet's Encrypt
Subjectmedical-room.site
Fingerprint14:64:5A:9B:BD:DC:60:5A:C4:E8:DF:D8:11:EE:0B:2B:EE:2E:A9:59
ValidityMon, 24 Apr 2023 02:04:42 GMT - Sun, 23 Jul 2023 02:04:41 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /click.php?clickid=undefined&event8=1 HTTP/1.1
Host: medical-room.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 28 May 2023 08:05:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
www.binomstat.info/rediska.php?clickid=undefined&time_spent=3
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=3
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=3 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:30 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=reSbxPS3YT25ZEp%2FvEAOZkwqMCSaVRpJKQv1nArtbr6IV8qs5Sa5CTWfwsXxHLr%2FJLQUPTstNf5Yb0yt7WovC7vaMK1o90NK2b02TffZU%2B0TZP5L5CVawYFSJSj%2B6NnZY1f9DvA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe30cc33b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=7
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=7
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=7 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:34 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qW4WtnG2h9zjN9T7yR4BRtUmPsX%2BVVtMR%2BeBMOV4nImUlgpK79zhlM%2BDNlAhFMkhaIb4Wjs2CRbKtYOD9PAe%2BG%2FUjsKg43dHi%2BL06LugtWO5jR5VYRvhGlaVlg3ZcYoaKeHOpPU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe49c8e6b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css
172.67.148.132200 OK 71 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:00 GMT
etag: W/"647068e0-113bd"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=otqDnIRZeyAansqHr88PA8HW7XjboJ6IZlUSI%2BX0AdnQgHf1e2xMC6ORsLFtwAcSm%2FfRjRJ8hw5Vvv9pT70ztLQDfEKzODOcIA6pnA%2B6x%2BDX3u7BBPpi3JV2oE36imb0IXU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf5e0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
142.250.74.106200 OK 11 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
IP 142.250.74.106:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash 1e960d07bf13260605883a5d201ccdb7
69ce96092d257837d6af401bcf8b11b3d2f74b3c
bbd133aaccc627dd11acf8545f051db9b1e00f4875ff6c7e89ab3509f9871ad3
GET /css?family=Roboto:300,400,500,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 May 2023 08:05:27 GMT
date: Sun, 28 May 2023 08:05:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=10
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=10
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=10 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:37 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FZsLWmGgu9ObBnoOoG3mcTSWcKDqiAI5ipYtw2q1lN8zRSxmhVe9zS1JRZgKVt70W2%2BjI2Uk1T03jbUOzohOpDk4uLAB%2BITlFbV2M%2Bd8SDCEZGaAnJ8CswCpCyrSilpDrdG1XSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe5c8b86b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/wheel-cursor.png
172.67.148.132200 OK 2.5 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/wheel-cursor.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 158 x 158, 8-bit colormap, non-interlaced\012- data
Hash 619d2440c3deaa1a0259497fcf031230
ef05e68d91e9680ee356c94d53b33a3595ee220a
39a06b6a561b9c1e915b5563b991eb40fe0f592b2a637c0d73e864cda93b71cc
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/wheel-cursor.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: image/png
content-length: 2531
last-modified: Fri, 26 May 2023 08:08:08 GMT
etag: "647068e8-9e3"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9K8OVoD%2FEh5UinKg6xBaXZwXGpKpYgcxAxYAQLRMuQhR7NKdwrp87kecM1kBLo8Gtb03e80A6ZNwAvPyZjoUcBGirVQThItHRo7fE9f%2Bh8RdF7SzdbA1NjNqp1wU2kCnxSQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fb60afe-OSL
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/orderForm.css
172.67.148.132200 OK 15 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/orderForm.css
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/css/orderForm.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:00 GMT
etag: W/"647068e0-3a8d"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5mk%2F7g9v1G3xCCUY%2FoH8ua5K6tXdNgstzwQ7rHVp2XwdJOgTwz7m6AKt96XF%2Fs2QNhxa2r9rGEQWl0QCEM6oFlZuWOun%2F1zPTmq6VPHKmb9Oo7wwwgUmckmImRa7eQrzrKI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc50afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=9
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=9
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=9 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:36 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YWc1lvbIV%2BcP3ga3Qg45oF9%2F4MhoHvYD6SG7bV8%2FgzEsNnMbYvpCgWlZFPGY0WytC%2FRPnLQsqRXr%2Fy9NOArH1X6fUcvpFuNelJi8EuIQyJbCb8AZk0Fq3VYcPO7oXVjxK4x2XfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe5649d6b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.css
172.67.148.132200 OK 7.0 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.css
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (7713), with no line terminators
Hash 0d439a3ee15bf074428b30259245d250
434440814c62bfff3f2c62183152df79cd2e2596
5fe8f8d30792ef17f9ecbc25951cff8b26f6c7a3da930c3e8a145a8e4b228661
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/modal/modal.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:11 GMT
etag: W/"647068eb-1b87"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bQgOt9PcIzhJUSv%2Fknrrfgr8X3fu9elUZ0EgR1L%2Fgp0NNvdPTy87yRbCIix2ReS1BEkMPaIy38YtQZy891PmruWPi%2Bn8Gkl%2FIPY69EVxCSruYMLNR%2F%2FOAM8zjpbfQIZFoaU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc60afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=11
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=11
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=11 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:38 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8WaGHwTW%2F%2Fidcck98W1hBsK9iBCZApVwdMalBH1DkoUJ3OPDqB5JUk0enpfO2onGdflhRinht%2FMfwUN2H69lKS7d9KfkH5DaMvIHMiVTBqdWSxFGkI%2FFoOr6pbtRZPlbJPjQCVA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe62cba9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/ico-sa331de8fd1.png
172.67.148.132200 OK 5.3 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/ico-sa331de8fd1.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 70 x 1968, 8-bit colormap, non-interlaced\012- data
Hash ec4240cc0984ec21272c0995f1de2eae
eb44b233384ad942cd9f98f55064dbbcabd7346a
6404710617c3f15781c6dd740cfc445fb517313678e993f1115c9c3a26660c0f
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/ico-sa331de8fd1.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:27 GMT
content-type: image/png
content-length: 5277
last-modified: Fri, 26 May 2023 08:08:07 GMT
etag: "647068e7-149d"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qfLP17XU2WTl33bUBbunuGWZAnQIyZWyymmChvKKK6pMoWHh7jpmFCR1vjlKq03K5MHMY4JdaqatCm6rj%2FoWWhFpYhT3POCY3TaAvyWTjHogxgghGHsZa6sJxHXpmBUtUp8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1d29b30afe-OSL
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=4
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=4
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=4 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:31 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zvDIhQVfPBBvvFYjIc1wMxAh3K5uWADuwQVeXhU%2BhJt%2FP4LvVxPCSrNmcfv8Vv8oOnRJznSJjEJdQqIYkU3qZ%2FJZXwClXWV9exgXCFY7zAybR6m%2FxgcJOwOaCV0962SmHB8d9NM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe370e8eb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=12
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=12
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=12 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:39 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MylJjRwemNtMZFFhqQpHZTfOGMPd%2Fj3nBMqvUaJSCcVKg1RzytGUwXYr7qnaSTBCfp1ULrkSePGp8oNgEyWVDS%2BoMjMxJEf1THf6jrVHbXYfwdUGY3g%2BX2i2qpUsjs4LCZC83rw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe690c32b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/l_all.css
172.67.148.132200 OK 43 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/l_all.css
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/css/l_all.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: text/css
last-modified: Fri, 26 May 2023 08:08:00 GMT
etag: W/"647068e0-a68b"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAY1t5R%2BzDLyMu7OCzOEhlL9KJFXxBkheCTVol9Mzx1qbM%2F8t0ZsjVGfJ%2BF%2BlcmoUbRSDKPTMoVJVYMQFF%2B%2F0UCJtiVpIq8MUlEX5rmPvXiOpfZ8LUz1SovNS6M3gXwxDVg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf610afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=5
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=5
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=5 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:32 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MRcJcTuFqOKPM9KvEAwRPEwTU5o9I6dFLQ4GvNexRWj4BRSAKxRYBEyMlFaxypinzt6TRpY9nJ4fEmQXkADSLf84%2FZXA1fgBCY29BeNzYjPfRXuMtQqPr5KiU3gMaPk3DBXc%2Fxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe3d4fd9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js
172.67.148.132200 OK 11 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/js/modal.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 26 May 2023 08:08:10 GMT
etag: W/"647068ea-2c47"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N1Ahn8nszax7ZKXxsbuhnRsXEosMm%2B%2FkCLoLt0su2PYHlo2Xe4vrG%2Fs87TQgznT137uXzU9KKyFcnHhXo3Gs9GhIZIKbeqCSmk7dXom38vVeFAO0Z3BY3Rh%2ByqhpFZP78JE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fbe0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/social-ico-s508f28af8b.png
172.67.148.132200 OK 8.9 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/images/social-ico-s508f28af8b.png
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 25 x 2840, 8-bit colormap, non-interlaced\012- data
Hash d2222916328b29c022f53f53f01f9842
0c4112bd4b3e90b2858b6c6d84197be8812905b0
4b7b3fd23794fc9d37884722a9772636511d0fa01e901c283276fd9cfa9ac60b
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/images/social-ico-s508f28af8b.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/css/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:27 GMT
content-type: image/png
content-length: 8880
last-modified: Fri, 26 May 2023 08:08:08 GMT
etag: "647068e8-22b0"
expires: Sun, 28 May 2023 13:08:51 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 64743
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PQfkU4GlKbRFbYSFTS5BLbiy070KgpASZCG%2FnQHUmjI5AvKmrX54IC00UBjIn836cILyMY%2FmOEyWCpdbqsoBJeoVC0kKp2oK0gEakn1vYWvXukmKuH6cnIGEHXIA9YB22%2BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1d29bd0afe-OSL
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=8
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=8
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=8 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:35 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6BwLNXiXHSf7DJKZU1fT2g3mYKCwlxXDx0Z%2BIm1LQ1O0SKbjFDyxPiCxmLbWo9LvQdgosl%2Fh0p7xa27jyKPsrFhDNdC4aZTrIyEW2bd9w0aGbiHWS9cYAAovTQTQDk8xYsXRYrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe50095bb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newsworld.cloud/js/back.js
172.67.148.132200 OK 6.8 kB URL GET HTTP/3 newsworld.cloud/js/back.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (6954), with no line terminators
Hash 2e4694b29859fd7d2b65eefae3dfc929
6105bf97b36a1dbd4a4f260781eb0330d42a90ab
37fe5a70c2321103fb0b59e07cea8688b2a473385f5205f2427aff524ef51bda
Analyzer Verdict Alert fortinet Malware
GET /js/back.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Tue, 26 Apr 2022 16:16:30 GMT
etag: W/"62681ade-1a7a"
expires: Sun, 28 May 2023 08:04:40 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 84787
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OfoTuuauIwbLI5N%2F0542miiLugm%2BcbeLI5vB8alLBg5EbZN3pTW4FyRAgOOJk0lRqvP70SD6YQpHg%2FspyEPppu%2BOSLaXVWypQ%2FO6uC9RuONq%2F0nlGqqhqI6jSDc6d7Uy0us%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1adf670afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
142.250.74.106200 OK 7.0 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
IP 142.250.74.106:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (7205), with no line terminators
Hash 181654adae1b0c1fc01ac8a1dd6d20bb
b17db82d61f0fc09ae0c6dd9e1f5c09568889bd1
14cf6b095ca053ec3915bd76f4f9bc1825d403eb5d34b9db0b41490e99e9aee7
GET /css?family=Roboto+Condensed:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 May 2023 08:05:27 GMT
date: Sun, 28 May 2023 08:05:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/favicon.ico
172.67.148.132200 OK 677 B URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/favicon.ico
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5cbef12930e41245e7310db167295a76
6288aa948bbfca6e07ac3ebdcfd478f38732adb9
7f042fdb4cd419a426b7b0359ec28b59fbf9680803c0bcf9014005599b134ebd
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/favicon.ico HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:27 GMT
content-type: image/vnd.microsoft.icon
last-modified: Fri, 26 May 2023 08:07:59 GMT
etag: W/"2a5-5fc943c35619b"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q%2BFBQcT8FxbjvvMf5j8TXLA%2BfGdSGzG4oIes7bMZaX6yigtK%2F3xmnO%2BqzsiTQeRwWt8lv%2BVKlPGjY6kZsXULe2etwhH1MpJZRdMCiBomAmKHD0%2FfNwgY2HBdWcF7Y6Bsaig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1dfb7c0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
172.67.186.125200 OK 0 B URL GET HTTP/2 www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=2 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 May 2023 08:05:29 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MdvvxdwLD2DcNNYwey6FUPYEZoJcgxGEr1aD4c28dNXa4LdgrrbBLCm1I30bjIgqv%2F%2B0%2Fgta7i7HZLp3NnW5gt7%2BzI44c6%2BoKeDK45RXHnaIgs30UHPlRJ2r1mnqjM40%2FXhpY%2Bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe2a8878b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=6
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=6
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=6 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:33 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cZDOI8CixpRYetQhOGwUeboY7vlUhbOAiAqbrf4swaF7eAbenciX39x9WSZTQPAY5t5AE1X%2B5%2BtMmPOFEKoW838VKJAYNYHNpVbxEJGFyIDpiZP%2Fc%2Brbq0hhQChNGXuXjgfoUq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe4388b3b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=13
172.67.186.125200 OK 0 B URL GET HTTP/3 www.binomstat.info/rediska.php?clickid=undefined&time_spent=13
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=13 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:40 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=anLNxddV%2B%2FF14mjcUH3DEjJ6SszxUWoXQDfLvyyODqSLBnDfbpHEiPIf7c%2BM6qfMdZ4dPg5D1BSuYbHxf8hIdziYbnxpR8sAba7U7%2FTGw0Od0QOFJRxE2Tx49eqlWMWvCd7wOUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe6f4d76b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
172.67.186.125200 OK 0 B URL GET HTTP/2 www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
IP 172.67.186.125:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerGoogle Trust Services LLC
Subjectbinomstat.info
FingerprintD2:39:9C:31:9E:66:5D:07:C8:DC:3F:6F:47:67:EA:E1:1E:A5:D8:25
ValidityThu, 25 May 2023 01:19:09 GMT - Wed, 23 Aug 2023 01:19:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rediska.php?clickid=undefined&time_spent=1 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newsworld.cloud/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 May 2023 08:05:28 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rawz48YZTA1KlT9lIvE1oR%2F0F2p0Rcew2Lr%2BUiHePFPyYs%2F7eWUZHhr%2F73USsYczEB9MNBMQQHvmyInWaXz%2Bq2tlGR7yPQoFifYhqeuip1Ak1aetg7NE55zJc2baMuTOUGcj7Eo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce4fe258a6cb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js
172.67.148.132200 OK 12 kB URL GET HTTP/3 newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js
IP 172.67.148.132:443
Requested by https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint0D:A8:8E:2A:F2:F7:05:81:E4:DF:48:6A:1D:A9:B5:FE:4F:B0:1A:51
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /revita-lt-poten-urologizuniversiteta2-koleso/files/js/index.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newsworld.cloud/revita-lt-poten-urologizuniversiteta2-koleso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 08:05:26 GMT
content-type: application/javascript
last-modified: Fri, 26 May 2023 08:08:09 GMT
etag: W/"647068e9-2ccf"
expires: Sun, 28 May 2023 08:33:31 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 67042
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQUr9OxwDvnU9TnyjV9d6CoxJlf9Ww4X1wZiXP1exrqB4MLZa9RItu6RbzzZGXYepFFY%2B%2Fhe4qGo6adJ8wOP%2F1rOXs2QhTTpo6nlTXc%2BohqTU7%2BINtLjceHYQXGUfzN5zBc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce4fe1b1fc10afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400