newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
91.228.154.4200 OK 13 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (980)
Hash ac2401c36599eba570943b47e69a5347
c7c3ea6646902c697760c7ec4a4d961777f4ae98
28f9c67b253da2fc4cc63586d4786c3194cef881a93cf43a02112d3f2122266a
Analyzer Verdict Alert fortinet Malware
GET /cardiol-davlenie-povyshatsya-pt-v2/ HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.27
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 19:09:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bHkIApnnSFJM1C-GedyT4ebrYsDCGN0UBFgDSmW0my7Bmo7CUZSqww==
Age: 3108
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15571
Expires: Thu, 15 Sep 2022 00:21:00 GMT
Date: Wed, 14 Sep 2022 20:01:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VZwBkr8emnvG657eRCfLtPRlyReX_9zigOSthyASQtE8QvZz__KsBA==
age: 55574
X-Firefox-Spdy: h2
newsworld.cloud/js/binom.js
91.228.154.4200 OK 1.1 kB URL HTTP/1.1 newsworld.cloud/js/binom.js
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash a5d669defe90e5c3446ef6157702edbf
bd88188d4916e5b611c5269f403513d4f16fdcae
c4d3ff5f6c7f28c8685618eaef697e75609eec3808a5df9596e37e3c3446a8dd
Analyzer Verdict Alert fortinet Malware
GET /js/binom.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Apr 2022 09:18:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"626cfecd-e8e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js
142.250.74.170200 OK 31 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (65451)
Hash 2acb91a52609d98e033b92e973500257
4ebcc3ee25749444de6454ee2009fb26a602f6fb
9fdd3f844aa3d86042f0b2f8ef839240ace6d14334b464b77847a5c329272da2
GET /ajax/libs/jquery/3.4.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30768
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Sep 2022 04:47:08 GMT
Expires: Sat, 09 Sep 2023 04:47:08 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 486861
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800
142.250.74.10200 OK 766 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800
IP 142.250.74.10:0
Hash d71ac876718b3fde556fc24de7f2eb10
018c76462bcae6729b565a9574eef581eda66e2c
a7f9e7d976c649dc7d1131408a0c672cf342113cbab5d826e1d607f7ca6bd169
GET /css?family=Open+Sans:300,400,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 14 Sep 2022 20:01:29 GMT
Date: Wed, 14 Sep 2022 20:01:29 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 20:01:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/index.css
91.228.154.4200 OK 2.8 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/index.css
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type Unicode text, UTF-8 text, with very long lines (316)
Hash f9e60d21167756f114f18c581f1ca3be
e005c15ec2d0d41ef62bc06dabc7f234ea5c6d79
c6867dffda1240e32fcd236300f0ea5246fc91aafe15c4bf0b3d4542485fcacc
GET /cardiol-davlenie-povyshatsya-pt-v2/files/css/index.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: text/css
Last-Modified: Mon, 08 Aug 2022 04:29:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62f0912b-3536"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
newsworld.cloud/js/back.js
91.228.154.4200 OK 2.1 kB URL HTTP/1.1 newsworld.cloud/js/back.js
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
Hash 0c388d69a61a00b419e49f6ea765e15f
7973f1916a4f512e7b1371791c8cea552751cb28
e8476be6c7b680e547c10a9aa13d9dd7089f294022297214e5e86fe0b4e9d251
Analyzer Verdict Alert fortinet Malware
GET /js/back.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: application/javascript
Last-Modified: Tue, 26 Apr 2022 16:16:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62681ade-1a7a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/form.css
91.228.154.4200 OK 4.0 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/form.css
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type Unicode text, UTF-8 text, with very long lines (316)
Hash 0ac87424e5a11e59fdc697ddd30ad91d
8e989438e15f297df6e69b482cd2d960edd3d090
8abbb4173aca6b74692c87b803e2ad690e3a4268d908ee880e8db8673764507f
GET /cardiol-davlenie-povyshatsya-pt-v2/files/css/form.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: text/css
Last-Modified: Mon, 08 Aug 2022 04:29:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62f0912a-5112"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/orderForm.css
91.228.154.4200 OK 3.0 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/orderForm.css
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type Unicode text, UTF-8 text, with very long lines (316), with CRLF line terminators
Hash e3f73429de950ec7b41fa20f34da0a5f
f853cc378bb31a6d5b84c694d61e2e8b72e0197e
43c99d20b16360dd92e7dfcbe0d2260418755cf751f0a1293a6ee7df5a677aa6
GET /cardiol-davlenie-povyshatsya-pt-v2/files/css/orderForm.css HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: text/css
Last-Modified: Mon, 08 Aug 2022 04:29:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62f0912b-3b58"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
polyfill.io/v3/polyfill.min.js
151.101.65.26200 OK 94 B URL HTTP/2 polyfill.io/v3/polyfill.min.js
IP 151.101.65.26:0
Hash eb8b0ba88b3acfb11ea81d5c02be9108
4b7f14cc2db25abdbe25472934b7469b2488f9d4
7237f15a97fe102c6ed13eadc0f7980da03cd06a20dfb7c7b8050e60dada617d
GET /v3/polyfill.min.js HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newsworld.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=utf-8
last-modified: Wed, 07 Sep 2022 11:53:11 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/96.0.0
date: Wed, 14 Sep 2022 20:01:29 GMT
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1660, PASS, fastly;desc="Edge time";dur=12
content-length: 94
X-Firefox-Spdy: h2
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/js/modal.js
91.228.154.4200 OK 3.5 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/js/modal.js
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2a36d88b03cee4548a483b97d6f236f2
89d9ca7d6a80238290ef80825b268942952b8b57
a26e03f3297c20146ac83c3d033720054588d5e5ecfd6eb034baf37e0b5969e9
Analyzer Verdict Alert fortinet Malware
GET /cardiol-davlenie-povyshatsya-pt-v2/files/js/modal.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: application/javascript
Last-Modified: Mon, 08 Aug 2022 04:29:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62f09135-2ac2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
newsworld.cloud/js/form_validate.js
91.228.154.4200 OK 1.4 kB URL HTTP/1.1 newsworld.cloud/js/form_validate.js
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 0686d63b1eeea23eb7f05c33bf06f417
45310925bedf79ad41557326b7d5a76503ddd963
faaf962e49f82a1745753a5b42ed9066afc0a98ea76b25c73daf00856a667d1a
Analyzer Verdict Alert fortinet Malware
GET /js/form_validate.js HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: application/javascript
Last-Modified: Tue, 30 Nov 2021 09:51:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"61a5f430-db1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/16.jpg
91.228.154.4200 OK 7.3 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/16.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash b7a8e2bcb9788eec567217db50859b3c
7acd76acf73af34b41fe947dd14455b56eef8766
0495c5edfb9b5a75989bce5e6e06afc2a183c350e9a1dcfa92cea463c1155ebb
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/16.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 7274
Last-Modified: Mon, 08 Aug 2022 04:29:34 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912e-1c6a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-1.jpg
91.228.154.4200 OK 12 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-1.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 413x320, components 3\012- data
Hash b596c1ff50574ce84ba0a3273088149e
85436ca993867ac124a319bedc2e291b4e8c6af9
c58759dd3b7d32193d9f262352e3a639f28d10a120b9281af09de98fc5e5c35d
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/content-1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 11498
Last-Modified: Mon, 08 Aug 2022 04:29:37 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09131-2cea"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/11.jpg
91.228.154.4200 OK 3.6 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/11.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 69d3d48eee9311b5301c1e325e2352ac
f7f15c0b5ee02ae7ba7abb739eb62ecd6efc4049
dc0616f58eef5987336ad46d9d8a2aebdfc106290637376b8c4e1c3fbe6a5b0b
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/11.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 3564
Last-Modified: Mon, 08 Aug 2022 04:29:33 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912d-dec"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/7.jpg
91.228.154.4200 OK 3.5 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/7.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash b835a300a2273b6b26a84cdd9333ff66
dd97f1a070682f2603a1951c81b9dc803f9be46d
df785dbd403265e114cbad40218452e6cfd595b9277e63b511dbba783243410f
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/7.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 3542
Last-Modified: Mon, 08 Aug 2022 04:29:36 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09130-dd6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-2.jpg
91.228.154.4200 OK 27 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-2.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x439, components 3\012- data
Hash 3e09002b9822457baf172ad48be62658
26cb293bd43e9aff2ec21534aed509e090b517be
fa676cee929bcfd9781eea8e6918a919b1b253cfc5d380f738d17253d63f91eb
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/content-2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 27090
Last-Modified: Mon, 08 Aug 2022 04:29:37 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09131-69d2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/13.jpg
91.228.154.4200 OK 4.2 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/13.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash e5e2fb155bcfe4fc5b4e8b6b8572b80c
f6f19c322d5b7dd405a7b1ccde95a356131cb044
17dc27786e594ba932df16c2703f67e561baae48a6c43f3557add1cfc517f32b
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/13.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 4163
Last-Modified: Mon, 08 Aug 2022 04:29:33 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912d-1043"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/14.jpg
91.228.154.4200 OK 4.2 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/14.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 0b8103569ef7a42bb32e75cf1f44a107
abe1c9815b1935e70bdf4f8e7eb7b4da38ec0620
47213f9ed05defd742a141af9e1ddb90aba4e11318abe2817bf59942e3ecff12
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/14.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 4206
Last-Modified: Mon, 08 Aug 2022 04:29:33 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912d-106e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/17.jpg
91.228.154.4200 OK 5.8 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/17.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash ae98be39bfd84e1ba10c1861a1c479f3
afd294dd26bf77f048b0c671cc0ebcdf0ce9c1d4
5dd0aaf972d7817f5c07e8528b8bd39b1fe885574cc673e4d0f293f15ecf4151
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/17.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 5844
Last-Modified: Mon, 08 Aug 2022 04:29:34 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912e-16d4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-5.jpg
91.228.154.4200 OK 75 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-5.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x598, components 3\012- data
Hash ee36aec4e27446794bce6695ad56c4f5
f4be9c3c154091bd288db9c45a158e6be4ff9d86
d5265d1502c7546bbe18fada2c6c7df9d21e1dc9adcb14e2352520b0c45b6887
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/content-5.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 74764
Last-Modified: Mon, 08 Aug 2022 04:29:38 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09132-1240c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/wheel-cursor.png
91.228.154.4200 OK 2.5 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/wheel-cursor.png
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 158 x 158, 8-bit colormap, non-interlaced\012- data
Hash 619d2440c3deaa1a0259497fcf031230
ef05e68d91e9680ee356c94d53b33a3595ee220a
39a06b6a561b9c1e915b5563b991eb40fe0f592b2a637c0d73e864cda93b71cc
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/wheel-cursor.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/png
Content-Length: 2531
Last-Modified: Mon, 08 Aug 2022 04:29:40 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09134-9e3"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/prizewheel.png
91.228.154.4200 OK 20 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/prizewheel.png
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data
Hash db06a1341344c32acc9980ae5fe83091
c57df0088378258dbce2ab5c4dbe605cfe2bffba
55dc64fb1df3136b7c8f1b28b3b8ced5043dd6be07a59e88e64310a9af1a6594
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/prizewheel.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/png
Content-Length: 19662
Last-Modified: Mon, 08 Aug 2022 04:29:39 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09133-4cce"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/logo_med.jpg
91.228.154.4200 OK 5.6 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/logo_med.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 464 x 101, 8-bit/color RGB, non-interlaced\012- data
Hash 6cd7a695841b703952eec4d7e958bd6b
4d27bc77cbbb866b13d4c69b0dd92a4a5d784c06
8762debff9021df21b65aae299f40535cde8a530612e96ded70cc34ef78d0300
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/logo_med.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 5599
Last-Modified: Mon, 08 Aug 2022 04:29:39 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09133-15df"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/4.jpg
91.228.154.4200 OK 4.4 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/4.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 0256b83233de4d5fc37a06e3e09fe9fa
49ab35b1b85ffa903a381ebab9c529c97571f101
6af924f65a3d7a81aaaea90c0f9fe10386a9a81135e8a908c5eeb23a8b0e91c8
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/4.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 4413
Last-Modified: Mon, 08 Aug 2022 04:29:35 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912f-113d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/comentsm.jpg
91.228.154.4200 OK 837 B URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/comentsm.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 34x34, components 3\012- data
Hash 50e7b5d0d1543ce2fcde58916b3ad5a3
f2c7d330c8978dbcf898633a3029a78db38f9a71
083bbbd660a0924cca7b13eb5c872b86a8fcc311610afe9b59dc6d7f8f64237e
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/comentsm.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/form.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 837
Last-Modified: Mon, 08 Aug 2022 04:29:37 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09131-345"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/jornal.jpg
91.228.154.4200 OK 42 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/jornal.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 141 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 21ed6bb72ddf479d35db493a3c518b91
2fa1fccf82277c67a8cd3a714856fe984f32ada0
61e20dadca5c4ce22399fc72211c29e8aca32defb12d84e3a94f2061c8470355
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/jornal.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/css/index.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 42037
Last-Modified: Mon, 08 Aug 2022 04:29:38 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09132-a435"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/otek-main.jpg
91.228.154.4200 OK 31 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/otek-main.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1128x504, components 3\012- data
Hash ce8853ea2d5971bdc4f9dbdf8a51d814
c1b71ebb986ace3a10d9f5c0f898bcf203d09e6e
591886747705d8969395442c37dc97db6701ebc3115dab97160b5bd38eb0989a
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/otek-main.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 30606
Last-Modified: Mon, 08 Aug 2022 04:29:39 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09133-778e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/1.jpg
91.228.154.4200 OK 3.6 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/1.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 22ad3ad69b82e0d0724d5a77a9c9a892
dd6966ee24628efc1f64feb3f3722f6195f19689
7bde04e677a9ab6061645a6f73c330a161882588df46e17ec3b98a407801665e
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/1.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 3589
Last-Modified: Mon, 08 Aug 2022 04:29:32 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912c-e05"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/2.jpg
91.228.154.4200 OK 4.4 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/2.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 5bdfd95828590beefa82776fc8f93766
7345eda018d8487466df5bf0cc54b90832fe01e6
b36edf9a534033693bde8818f151896bd0619dba07e66dede9ebe150bae1ebec
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/2.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 4369
Last-Modified: Mon, 08 Aug 2022 04:29:34 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912e-1111"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-4.png
91.228.154.4200 OK 565 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-4.png
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 629 x 426, 8-bit/color RGB, non-interlaced\012- data
Size 565 kB (564797 bytes)
Hash ef6ec882ca6b69c4af0efb42ee66a076
0de5db5a2374487e38b65f7a64c737aac5e82c63
a6b863b639b843bd0bf6faad34573a444949d703386fb37a6f38bb71d0a822f4
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/content-4.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/png
Content-Length: 564797
Last-Modified: Mon, 08 Aug 2022 04:29:37 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09131-89e3d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/3.jpg
91.228.154.4200 OK 4.0 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/3.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash d4a9cd6ae53f98df9bc5ae0002c19c2c
c8a601ccc2a2ca8b632b6f115a934c67411e9f31
a5a98357a271d1f91db3a27e1c90700910f8b9f38ded749f9bacc0bc0ba36348
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/3.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 3989
Last-Modified: Mon, 08 Aug 2022 04:29:35 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912f-f95"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-3.png
91.228.154.4200 OK 801 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/content-3.png
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 625 x 686, 8-bit/color RGB, non-interlaced\012- data
Size 801 kB (801449 bytes)
Hash 759cc3043c382dc49b4a02f2e1cd0f3d
d74c280be1c4e239be31829d5989983607119296
e08512202891db423c7c3a6e674ab714e216802492269f2c98ed7bda2874ff7d
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/content-3.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/png
Content-Length: 801449
Last-Modified: Mon, 08 Aug 2022 04:29:37 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09131-c3aa9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/9.jpg
91.228.154.4200 OK 3.9 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/9.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash cef932b0ddf72392604a9c2676ce92ce
d524d41a1a4f20eae3c6a0bd34283b9efefc0542
5450b3a6c67b77a8d81b0959952f68494cb45863e0a5b1ebdc28628b2ee2eb4f
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/9.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 3875
Last-Modified: Mon, 08 Aug 2022 04:29:36 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09130-f23"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/8.jpg
91.228.154.4200 OK 3.2 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/8.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash e1df95049cafc5d765c8c3ac66ac193b
8717aca75dcd85f86b6756caca977aa456936c5f
271b472b978ee8dae06b0e3734bdbe98659692b88e6498bafbd6db255141d67c
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/8.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 3185
Last-Modified: Mon, 08 Aug 2022 04:29:36 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09130-c71"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/12.jpg
91.228.154.4200 OK 3.9 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/12.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 00f6a31ff04a8319595e23b36ab5c722
1b3b59ef7277db8917bb7503f57ef17ed8baf83d
ef00d45a3517a568161d87ed80b5df1ff12a4975dd5b2ee1de33aae8efb65265
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/12.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 3943
Last-Modified: Mon, 08 Aug 2022 04:29:33 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912d-f67"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/10.jpg
91.228.154.4200 OK 5.0 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/10.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash cd75e1e9806e154a1c3cceb3fe21bb88
6ae46b07baf7d6b95dde63532287f1ec52ad2046
1d79582908aa3bd1ea58317f4fd299e2431648e1b475b41eeb3a9d16957e1e48
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/10.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 4997
Last-Modified: Mon, 08 Aug 2022 04:29:32 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f0912c-1385"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/6.jpg
91.228.154.4200 OK 3.0 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/6.jpg
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 884bf6d1d47fc15638f75d6b9b8b62be
77f3a45a8855e3409582990accfcc98efbd807de
7e40cc2c67de1a78fbbe085414d98403cee3aed23d1c1ad3155ac47aa1d48b2b
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/6.jpg HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:29 GMT
Content-Type: image/jpeg
Content-Length: 2958
Last-Modified: Mon, 08 Aug 2022 04:29:36 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09130-b8e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2
142.250.74.163200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19124, version 1.0\012- data
Hash c1b5d14d0136309bd96218e6847b3918
6d73e6d49b1e6313768d3a34b00d643ab0ac34b4
bf4eae9216be01f9a411ac93c5008eb38a3abdbb12fdb50ef974a4599e90220a
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newsworld.cloud
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:25:28 GMT
expires: Wed, 13 Sep 2023 17:25:28 GMT
cache-control: public, max-age=31536000
age: 95762
last-modified: Tue, 26 Apr 2022 15:47:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2
142.250.74.163200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18860, version 1.0\012- data
Hash c91aac6ef66a18aed734e40c1b7ef33c
8e7075376823d45b4367b876d9ca7e24b22e07af
49791a696302b5112cec6f474d4d188ec3da019fab43b744b558c8b5e6644785
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newsworld.cloud
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:49:28 GMT
expires: Fri, 08 Sep 2023 16:49:28 GMT
cache-control: public, max-age=31536000
age: 529922
last-modified: Tue, 26 Apr 2022 15:50:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19740, version 1.0\012- data
Hash 101cf2a65d64322878605fa8472bb025
6dffc15e38c321e4bb567b4bd8107a2e8d97c61d
273c8613cdd2852dd5318f224d804ae6d2fc717c48d3f1dab587b6d396fb4fc8
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newsworld.cloud
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:14:55 GMT
expires: Wed, 13 Sep 2023 17:14:55 GMT
cache-control: public, max-age=31536000
age: 96395
last-modified: Tue, 26 Apr 2022 15:48:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newsworld.cloud
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:16:50 GMT
expires: Wed, 13 Sep 2023 17:16:50 GMT
cache-control: public, max-age=31536000
age: 96280
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/product.png
91.228.154.4200 OK 98 kB URL HTTP/1.1 newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/files/images/product.png
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 279 x 323, 8-bit/color RGBA, non-interlaced\012- data
Hash a5693d380dcff5ca43230df4598f4129
9e1389202ff1a087b2a13fec2f5560f6dd8b1c04
13db54044b0d8145583ed817a35a6b055b94178834cb61533d141b0ff8860106
GET /cardiol-davlenie-povyshatsya-pt-v2/files/images/product.png HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Sep 2022 20:01:30 GMT
Content-Type: image/png
Content-Length: 98474
Last-Modified: Mon, 08 Aug 2022 04:33:41 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62f09225-180aa"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18232, version 1.0\012- data
Hash 68f022f10e4e3d97c91facdea94febf6
f8c531fb9efe8e003e11ae43337a4fbab54adc4f
ea18ca3fe3ae4d94d21bb36a2912258193fb4f257be81be3dabe0e3809a312e5
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newsworld.cloud
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:25:13 GMT
expires: Wed, 13 Sep 2023 17:25:13 GMT
cache-control: public, max-age=31536000
age: 95777
last-modified: Tue, 26 Apr 2022 16:45:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
newsworld.cloud/favicon.ico
91.228.154.4404 Not Found 209 B URL HTTP/1.1 newsworld.cloud/favicon.ico
IP 91.228.154.4:0
ASN #44066 diva-e Datacenters GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
GET /favicon.ico HTTP/1.1
Host: newsworld.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newsworld.cloud/cardiol-davlenie-povyshatsya-pt-v2/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 14 Sep 2022 20:01:30 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 209
Connection: keep-alive
Keep-Alive: timeout=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 14 Sep 2022 19:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 14 Sep 2022 19:37:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hcW0jFD67LS1f7l4M5_3gRi3Cf2CJkZ_FUQ10r9tCP72bKFPnpe0uQ==
Age: 3488
medical-room.site/click.php?clickid=undefined&event8=1
46.101.136.93200 OK 20 B URL HTTP/1.1 medical-room.site/click.php?clickid=undefined&event8=1
IP 46.101.136.93:0
ASN #14061 DIGITALOCEAN-ASN
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /click.php?clickid=undefined&event8=1 HTTP/1.1
Host: medical-room.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://newsworld.cloud/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 14 Sep 2022 20:01:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6217
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:01:30 GMT
Last-Modified: Wed, 14 Sep 2022 18:17:53 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.228.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: le+Pzfuj5D5M4xLVYmkhBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lRFM27RY+TinHVSEWMFhFqpGsH4=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4606
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:01:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4606
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:01:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4606
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:01:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4606
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:01:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:51:32 GMT
age: 79800
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:02:44 GMT
age: 61128
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c1314c7778ea0d32e8c69dae0c38b6d
c4772b9b182f9f905fead84f3761fe296073ca65
5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10366
x-amzn-requestid: e4d41ba8-41c5-4350-bacb-850136434eaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEw28GD7IAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63182e92-4098031d1475d45f4899654b;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 05:39:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BcQa5iNJlJ_rm50BT4O-rIEayxXyD0Jb5dUq_sUccIWfv12HfBec0g==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:40:56 GMT
age: 76836
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5befd5bb8e6d5dad2465be69d5a33e4
e5b46c3ca439a09950290cada1af5e27cede10f2
4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1X79jBMZa4UQmWsLdg_QIg5MQeersp1O3iSgpKd6R2f8Kl7PAJh0hQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:49:32 GMT
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
age: 79920
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yP22CSG5x3BVfq29UMdw30TZcvuaL-kUDgjBZDUEMpRVDWqlZrCgdQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:42:05 GMT
age: 80367
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fef8234ab83f6f8f8b29665f592cbc9f
a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CZRpgjU_AxNYoyeSTOwhJhONl2DS4pvCLJ62RgAFp0flw-kPz3GkpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:48:11 GMT
age: 80001
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=IBM+Plex+Sans:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;1,200;1,300;1,400;1,500;1,600;1,700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=IBM+Plex+Sans:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;1,200;1,300;1,400;1,500;1,600;1,700&display=swap
IP 142.250.74.10:0
GET /css2?family=IBM+Plex+Sans:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;1,200;1,300;1,400;1,500;1,600;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 20:01:29 GMT
date: Wed, 14 Sep 2022 20:01:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
104.21.71.213200 OK 0 B URL HTTP/2 www.binomstat.info/rediska.php?clickid=undefined&time_spent=1
IP 104.21.71.213:0
GET /rediska.php?clickid=undefined&time_spent=1 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://newsworld.cloud/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:01:31 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ahsq%2FAjWFqJQgv%2BtkgGkZK1VyZz6wYiPpUMlkeH99zaAd1L8BNL64Uvtvyp0%2BASvPQTXw6Klc9g4liibODa81sOgYB21QfvYOtiW0IKt4xEzCmNNcQwAksk23LVxi3BKLFEhLow%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74abb708fc931bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
104.21.71.213200 OK 0 B URL HTTP/2 www.binomstat.info/rediska.php?clickid=undefined&time_spent=2
IP 104.21.71.213:0
GET /rediska.php?clickid=undefined&time_spent=2 HTTP/1.1
Host: www.binomstat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://newsworld.cloud/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:01:32 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W53SP%2BCludpkhZpveMsgUODAfJfmQt%2BvQrYwKDiUMCHapjwXj9yp3Qcaa6sg6F9f%2BYQAKyTV%2F0FefFPQSDZtTk3jPxi1IyQeU58lv1rKnYHaY9hzZ94xOi6Hhs6LExbBSX7mxxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74abb70efc3f1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Merriweather:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Merriweather:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&display=swap
IP 142.250.74.10:0
GET /css2?family=Merriweather:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newsworld.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 20:01:29 GMT
date: Wed, 14 Sep 2022 20:01:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2