Overview

URL www.gazetaludu-dziennikzachodni.com/posts/9909920101
IP46.242.238.39
ASNhome.pl S.A.
Location Poland
Report completed2022-07-04 23:55:28 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Added / Verified Severity Host Comment
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/posts/9909920101/ Generic/Spear Phishing
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/posts/9909920101 Phishing
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/posts/9909920101/ Phishing
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/script.js Phishing
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/jquery-3.6.0.min.js Phishing
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/img/like.svg Phishing
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/img/wrr.svg Phishing
2022-07-04 2 www.gazetaludu-dziennikzachodni.com/img/sad.svg Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Added / Verified Severity Host Comment
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed
2022-07-04 2 gazetaludu-dziennikzachodni.com Sinkholed


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-04 17:42:22 UTC 93.184.220.29
[Mnemonic Passive DNS] www.gazetaludu-dziennikzachodni.com (25) 0 2022-07-03 10:38:44 UTC 2022-07-04 23:28:44 UTC 46.242.238.39 Unknown ranking
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-04 06:11:54 UTC 143.204.55.25
[Mnemonic Passive DNS] cdnjs.cloudflare.com (2) 235 2014-04-23 07:31:51 UTC 2022-05-16 10:07:49 UTC 104.17.24.14
[Mnemonic Passive DNS] ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-07-04 06:11:48 UTC 142.250.74.3
[Mnemonic Passive DNS] fonts.gstatic.com (6) 0 2017-01-30 04:59:51 UTC 2022-07-04 05:40:21 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] fonts.googleapis.com (1) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 142.250.74.10
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-04 06:11:54 UTC 34.210.39.83
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 143.204.55.35
[Mnemonic Passive DNS] r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-07-04 06:10:24 UTC 23.36.77.32
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-04 06:16:07 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain

Last 1 reports on IP: 46.242.238.39

Date UQ / IDS / BL URL IP
2022-07-03 13:04:52 +0000
0 - 0 - 24 www.gazetaludu-dziennikzachodni.com/posts/990 (...) 46.242.238.39

Last 10 reports on ASN: home.pl S.A.

Date UQ / IDS / BL URL IP
2022-08-11 11:08:58 +0000
0 - 0 - 1 fabrykakonwersji.pl/wp-content/plugins/super- (...) 79.96.128.235
2022-08-11 08:47:25 +0000
0 - 0 - 5 facebook-security.pl/ 46.242.248.121
2022-08-11 06:08:02 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-11 02:14:28 +0000
0 - 0 - 1 ahmedfahmy.name/logof.gif?191f2bd=52684154 89.161.227.139
2022-08-10 15:47:52 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-10 11:01:53 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-10 05:19:01 +0000
0 - 0 - 13 clearenergy.pl/ 46.242.240.19
2022-08-10 02:54:15 +0000
0 - 0 - 3 cleanfuture.pl/wp-content/plugins/wpforms-lit (...) 46.242.241.20
2022-08-09 18:32:54 +0000
0 - 0 - 39 bednarscy.pl/ 89.161.152.98
2022-08-09 18:16:44 +0000
0 - 0 - 13 mickiewicz.net.pl/ 89.161.173.240

No other reports on domain: gazetaludu-dziennikzachodni.com



JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (59)


Request Response
                                        
                                            GET /posts/9909920101 HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         46.242.238.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 268
Connection: keep-alive
Server: Apache
Location: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   268
Md5:    dea1f26dada71d2550bbc52179b4bb81
Sha1:   28191bce180615ec1c918cf618a0cb9c0b9ca625
Sha256: f373ad66131120c9701fc15732e327e9e183e207e4a85a79cebb3cce347e59f1

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 04 Jul 2022 23:54:48 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eoNW2LL27KxonObPBBhAyK_lwXgEiWJaJweOdBARmRD97fJczlf88g==
Age: 27


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659"
Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11522
Expires: Tue, 05 Jul 2022 03:07:17 GMT
Date: Mon, 04 Jul 2022 23:55:15 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 04 Jul 2022 03:26:44 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2EnFSjcAocBdpWTnUFS0myYfQxRmvaalmWEF2VglnywFDITLRrPDlg==
age: 73712
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /posts/9909920101/ HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2319)
Size:   6195
Md5:    7396929bb10283b14a4523ab8eab7512
Sha1:   6ddd664344f2102f66c9abab9c655848bcd1ec0e
Sha256: e4e8c1590c88aa98f8720873797a2bad176a934e8e5b69bf31e3598fb2c7d737

Alerts:
  Blocklists:
    - openphish: Generic/Spear Phishing
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Mon, 04 Jul 2022 23:55:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
                                        
date: Mon, 04 Jul 2022 23:55:15 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 22243
expires: Sat, 24 Jun 2023 23:55:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ooaRLfwQxG1iN%2FlTvXhcAaNZyRdodVFKJ5ZXSckUDOiz3aeefMCm%2BhKX18Xbak7eoGWukJvZ%2FsVqP55ClPVxC6zm44Io6LpG3ILHt4btcy7co%2FW3tfkzPGk7KGAco0mUt54dwdL%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 725bca6edc8db50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   5631
Md5:    109d1ed85cd01f9cdab73a4cac5bf80d
Sha1:   d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
Sha256: 8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
                                        
                                            GET /style.css HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:17 GMT
ETag: W/"2719-5e2d4e46f5940"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1833
Md5:    f71221327515d55a7d97a22e0a264d5c
Sha1:   7fcde9f03a4171674ad77c50dd20b2f665326ddb
Sha256: 2e1d4cd283e1fb8d1847763569483a66ea2cd580c0c4bd6d43c162e7838e9ee0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /script.js HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:17 GMT
ETag: W/"2a3-5e2d4e46f5940"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   279
Md5:    cd015ed80a7a2910ed01d34a46b7b893
Sha1:   3faafc026647198a3bd9294383612a29f95579f7
Sha256: badc36232860d7a2257e9ba8e77611f6735048c2bd2435ba2f464f24fd8a06b0

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /mobile.css HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:15 GMT
ETag: W/"54c-5e2d4e450d4c0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   409
Md5:    5c683f929739c0529893d63144ca28ac
Sha1:   056ced3f5a974b2a2277c8bb11edf2b42f1ab8d8
Sha256: e5cb9053e5be1aacf9050f3764d6f84bd48bff7dc8913be0d7521c2fe7979ee7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /jquery-3.6.0.min.js HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:15 GMT
ETag: W/"15d9c-5e2d4e450d4c0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30941
Md5:    ddc1088d83e1d0410213b3f67129029a
Sha1:   8271aa6e48e22ffa03ec1b3f0d5b21ca07674ca5
Sha256: b69306b92cd222499e9a8140b9bb1e04e7f970d30ad01d58e43899b57b686d5f

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/smile-dark.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 15197
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:29 GMT
ETag: "3b5d-5e2d4e5267440"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   15197
Md5:    cab028c3a5371315026ec8c1a4b7ab1a
Sha1:   770e16d0c64a0652c3e69da16f2987d96ccda50a
Sha256: 1d947c9ed30f67300b6a8a1bb940420cb4d11feec096705a163f2ae39f974895

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/smile2-dark.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 15232
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:29 GMT
ETag: "3b80-5e2d4e5267440"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size:   15232
Md5:    c75414be38e62aff7b02372b4fdcf2a0
Sha1:   7bee75af4bd431b6e3b47e04e0aa0683f30c238a
Sha256: 1d0c7af705d5ccfb8a3bea8d35f0009c1765bd20917fe0922589e8e6dc542bf1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gazetaludu-dziennikzachodni.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.24.14
HTTP/2 200 OK
                                        
date: Mon, 04 Jul 2022 23:55:15 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2419359
expires: Sat, 24 Jun 2023 23:55:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kGoCo4Ta2lc9PMY8U4Cygnv%2FoB5Yei2ibegxd2%2BDexXOXBnJiS8Z3%2BljCQcHQmnT%2BB6YSkSHOpRfTmJ8tgwzfglrlZatXQrcjzIZpL7mN%2BlsK%2BQTpiaVqtD0bzBicWYNQQuncAnm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 725bca704b3db527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gazetaludu-dziennikzachodni.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:35:18 GMT
expires: Thu, 29 Jun 2023 19:35:18 GMT
cache-control: public, max-age=31536000
age: 447597
last-modified: Wed, 11 May 2022 19:25:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16796, version 1.0\012- data
Size:   16796
Md5:    f39b602d1b08fc398343e5c11cf8cd87
Sha1:   944ea7b3ca302c92a6414f203ab47803da20948b
Sha256: 511b67b07a90c30bed95a6e3b1a7708d978d53f01e5fad89403590aaf22fb134
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gazetaludu-dziennikzachodni.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:34:58 GMT
expires: Thu, 29 Jun 2023 19:34:58 GMT
cache-control: public, max-age=31536000
age: 447617
last-modified: Wed, 11 May 2022 19:25:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16720, version 1.0\012- data
Size:   16720
Md5:    c416910cae8fe4258cdf8c35933e9f4c
Sha1:   4a768ba0a3abc49b572c08c235db9f066ffc2b18
Sha256: 9434dddcdf38e072b039bb92f9e90639ec0e0563e8ff51604a60d91830c29289
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVIGxA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gazetaludu-dziennikzachodni.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:58:57 GMT
expires: Thu, 29 Jun 2023 19:58:57 GMT
cache-control: public, max-age=31536000
age: 446178
last-modified: Wed, 11 May 2022 19:25:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12956, version 1.0\012- data
Size:   12956
Md5:    1909967d5e51895484f5c673a6f63e7c
Sha1:   96c29ffda44f77bb3e73312aa6569f93689168a4
Sha256: e3d26484862a274c11531b15e625eb52b36842c97f7376fef654372d69565978
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjr0B4uaVIGxA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gazetaludu-dziennikzachodni.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 22:14:19 GMT
expires: Thu, 29 Jun 2023 22:14:19 GMT
cache-control: public, max-age=31536000
age: 438056
last-modified: Wed, 11 May 2022 19:25:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12940, version 1.0\012- data
Size:   12940
Md5:    129b68f3775291ed4dcc1ed3c9ce3eeb
Sha1:   659e0ffe6560c6680a8bf2c8bb6f4c9247fee077
Sha256: 58828c8ad31b939f772243dfb086d7407fb885f1f6e62e7b5849337ff5b2a15d
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVIGxA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gazetaludu-dziennikzachodni.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:42:13 GMT
expires: Thu, 29 Jun 2023 19:42:13 GMT
cache-control: public, max-age=31536000
age: 447182
last-modified: Wed, 11 May 2022 19:25:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12976, version 1.0\012- data
Size:   12976
Md5:    8535dc12f1482d4b39be2184d9d6c6e5
Sha1:   707bc3ec2e03d3d6b29820845cbdbee5b9f4ffeb
Sha256: efe805237264add926a4639f07525aaf889d7a57d59f555ce04417ac606c8eae
                                        
                                            GET /img/koment-dark.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 15133
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:26 GMT
ETag: "3b1d-5e2d4e4f8ad80"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 17 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size:   15133
Md5:    925270141ff60725dd5f6a996ea297d1
Sha1:   e38618981ad8c8bbe8999fbbcc0abd756d74b06e
Sha256: 1772b47c4a85498f96564a9101c9b6a977ea9401c5b6430a81b233058be1db36

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/aparat-dark.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 15395
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:20 GMT
ETag: "3c23-5e2d4e49d2000"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size:   15395
Md5:    301a31e63480eff0f2e1b661284c58fa
Sha1:   84728a0d3c57451f9dafc737d0b4b009405b60e1
Sha256: f7e72fe1a70219ff8d2144629e535f732ad4221abe06ec9fca01b3fa1807e28b

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/thumb-up-dark.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 15245
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:31 GMT
ETag: "3b8d-5e2d4e544f8c0"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size:   15245
Md5:    d343e8d42c53bc22d2a8f878501dd4c6
Sha1:   ea4a13608f77f39156b52beda1685017d64fff06
Sha256: 3e3cc9a361e2af0c2b9dd8864c79d768be5dd7d1c1ce6db77848b6fb91535cc9

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/share-dark.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 15221
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:28 GMT
ETag: "3b75-5e2d4e5173200"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 18 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   15221
Md5:    c7fb48ecd72836ac15ec8b78437a3f3f
Sha1:   2cf400349b50f17d643b0bcd2257915e8ad3d426
Sha256: cac8515b2feb3ed1d82a0be160d79741e0407722c24a1dc1ed7554e9d4a94742

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/facebook-icon.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 16350
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:24 GMT
ETag: "3fde-5e2d4e4da2900"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Size:   16350
Md5:    a333bd430a3f875243fdb5b4af59a7d4
Sha1:   6d155d9d4949f3c9b02c8f6c8efc6c99759b650b
Sha256: 89fec68720f06ac1889b3641970178cbf4999c9754552c036771381b92a26585

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/a.jpg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 3422
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:19 GMT
ETag: "d5e-5e2d4e48dddc0"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Size:   3422
Md5:    9ee164ce82191a667be29f86a1c1faac
Sha1:   4cff532a24d28e094c3f55adc7cca51c989bc957
Sha256: b6aea4a78fcf48541162d755f747e0427b999bd079e9bf93f507a295ed0c8fe2

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjr0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gazetaludu-dziennikzachodni.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16812
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 20:24:00 GMT
expires: Thu, 29 Jun 2023 20:24:00 GMT
cache-control: public, max-age=31536000
age: 444675
last-modified: Wed, 11 May 2022 19:25:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16812, version 1.0\012- data
Size:   16812
Md5:    c4b206a48bb43e7920c17930bfd50f5e
Sha1:   dda1c1211daa2460064d984b41e4b88c3d637983
Sha256: f063375103cfe3be278f6dddc1835a21d92551b044ea1dcbc8219b67279a8089
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/like.svg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/style.css

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:27 GMT
ETag: W/"5d1-5e2d4e507efc0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1489), with no line terminators
Size:   794
Md5:    b93199cf74c999ffe60ccc5148ae664b
Sha1:   45311bba4340125548e12e223c8970d6a5d2b00d
Sha256: e1f894ccc61ce8728e41858ced32cf7f57534b8b09a45c78721b7fce838aba24

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /img/wrr.svg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/style.css

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:32 GMT
ETag: W/"1048-5e2d4e5543b00"
Content-Encoding: gzip


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4168), with no line terminators
Size:   1406
Md5:    0d06b98e7de0d2beab740e7c255d3021
Sha1:   f2c252630683b205775cc6394b21b517e6803545
Sha256: 9f95d497b96d19d9bd7a9abac11c623bfe6e5cd9df831be80d2f711fe6dcdbfb

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /img/sad.svg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/style.css

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:27 GMT
ETag: W/"f93-5e2d4e507efc0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3987), with no line terminators
Size:   1430
Md5:    745c2bf01d8aa1d7e754cb87e9716bbc
Sha1:   722b18859fa6683f0d50c8972f04d6ce4d391a30
Sha256: d11e1fea07ba16b6e6e63c41b29e80831283ea7ef181216e6791f55f7026139d

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /img/b.jpg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 56761
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:21 GMT
ETag: "ddb9-5e2d4e4ac6240"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1000x667, components 3\012- data
Size:   56761
Md5:    c591883dd02bfe8ac1809c11a741dced
Sha1:   7870af11609092dc181d5164b65f510a58134d93
Sha256: 1a4d524ad2c21a7f50dc64ce4ee3a345e28972961c16513465d5161a8c0a3d1b

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/smile3-dark.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:16 GMT
Content-Length: 15495
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:30 GMT
ETag: "3c87-5e2d4e535b680"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 15 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   15495
Md5:    2e31ade1b695b75c93efe993e05f93aa
Sha1:   ee78a19c363c82e845c18159d5ae954db811f42f
Sha256: 9714e3ff732bb9da66bdf29ff410f4c99b3a5933ef6c99d131155282d0da689e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/e.jpg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 195945
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:23 GMT
ETag: "2fd69-5e2d4e4cae6c0"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 1152x1152, components 3\012- data
Size:   195945
Md5:    505f97812b5e878d037f040fbab6dcb8
Sha1:   36635d8788c1aeb413ae94c46e4a3041712894cb
Sha256: 278a0df72a010f0e98c4537d95060608bf1f6835e0e9c6f29380f2d0d7fa11d0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/d.jpg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 439417
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:22 GMT
ETag: "6b479-5e2d4e4bba480"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x1421, components 3\012- data
Size:   439417
Md5:    15185a399cec7d1a6987bd1226d368f0
Sha1:   e140a4c28d58a7f2269a66d09ec5c950cf525a3e
Sha256: 5e7c8fcdb9fc5d5bfe18fb59f9dcf78d6cd4682efb4e206ffdd8fad4f807eedb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/c.jpg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 04 Jul 2022 23:55:15 GMT
Content-Length: 683466
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:22 GMT
ETag: "a6dca-5e2d4e4bba480"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1536x2048, components 3\012- data
Size:   683466
Md5:    c6a6bdc645fe0cfa4dc5a4f8129a98a9
Sha1:   e8db101608c94e49e451fe04111ba0c8d9b548a5
Sha256: f87a35d2d1f7b012ed25e6ce1f60f4a5da2f08b99f9e097ac5ee3debdf938e81

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/f.jpg HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 04 Jul 2022 23:55:16 GMT
Content-Length: 416984
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:24 GMT
ETag: "65cd8-5e2d4e4da2900"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 1440x1430, components 3\012- data
Size:   416984
Md5:    d59ba8026b2e4df44210bedbc34288e1
Sha1:   14a9665f4e01906dce9d0354abfd95ae9ca504ae
Sha256: 075cd9ff13a9860fa4cb345843853843993cb559fe4a9a3e939e44942842ec72

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /css2?family=Open+Sans:wght@300;400;500;600;700;800&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 04 Jul 2022 23:55:15 GMT
date: Mon, 04 Jul 2022 23:55:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   575060
Md5:    673b2d6962413648c5ca07da410f1bc6
Sha1:   adcab75fd6d0182fbe48d1105840abd331c1eb47
Sha256: ada21beb286d3addaf3eab4cadf36f27d973bbb5936d86a09625bc40042aa6a6
                                        
                                            GET /apple-touch-icon.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:16 GMT
Content-Length: 5359
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:13 GMT
ETag: "14ef-5e2d4e4325040"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size:   5359
Md5:    1cb09e7f10ce50108c96cc036e9f93f0
Sha1:   35610b0a3404e3ec23151e210aa783bfe77795d8
Sha256: 1ec0b4a48b631172bab61c490218cbd814123a4d0d34a67acc32714b87180665

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /favicon-16x16.png HTTP/1.1 
Host: www.gazetaludu-dziennikzachodni.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gazetaludu-dziennikzachodni.com/posts/9909920101/

                                         
                                         46.242.238.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 23:55:16 GMT
Content-Length: 946
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 02 Jul 2022 16:21:14 GMT
ETag: "3b2-5e2d4e4419280"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   946
Md5:    32e331f91265704509f4e0295504136f
Sha1:   abf4e169d21c8008653e46ca83884978d23b81dc
Sha256: 8d81ba28b66c27fd54b917262ea827604a9e64016bd487de3501acd60bf7a2ad

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 04 Jul 2022 23:52:47 GMT
Cache-Control: max-age=3600
Expires: Tue, 05 Jul 2022 00:21:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ttYMTuw0sMcHIz2iJHe676b-b1dsdQD40v1zrtT-_DWKpPdhdD2FxA==
Age: 176


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4973
Cache-Control: 'max-age=158059'
Date: Mon, 04 Jul 2022 23:55:16 GMT
Last-Modified: Mon, 04 Jul 2022 22:32:23 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: llnGd0aM1S+P3vMrXA0pRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.210.39.83
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YzbIfMkQemG+4k687sg32p88y1o=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11890
Expires: Tue, 05 Jul 2022 03:13:28 GMT
Date: Mon, 04 Jul 2022 23:55:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11890
Expires: Tue, 05 Jul 2022 03:13:28 GMT
Date: Mon, 04 Jul 2022 23:55:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11890
Expires: Tue, 05 Jul 2022 03:13:28 GMT
Date: Mon, 04 Jul 2022 23:55:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11890
Expires: Tue, 05 Jul 2022 03:13:28 GMT
Date: Mon, 04 Jul 2022 23:55:18 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b5149e9-33ff-4147-bde2-5c16d2c85400.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9130
x-amzn-requestid: 7a6e4330-591e-41aa-a8fc-2eb50ef7b9dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UorLgE9UIAMFlSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c0257c-541a0e3d218259623aceb2d1;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 11:01:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jNnq1HnAUaS4IEFZtJJMK0Fy9C9QYwp77_FnpN5FJkF55RY5ukQDQw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 04 Jul 2022 05:53:22 GMT
age: 64916
etag: "bad0f6fef090a81fd10ef57575424f76b9e73b85"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9130
Md5:    a0c68898cc187df82b25edc852693e9a
Sha1:   bad0f6fef090a81fd10ef57575424f76b9e73b85
Sha256: fedb62c5c89e162540d34eb50f20b2c5b59f100c69e302105b26f90528ec1d01
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd06fa81-5ac9-4295-806a-c831c401721a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4200
x-amzn-requestid: 2d5e08fb-e811-4d46-b6a6-234708fa21ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Up-c9G8woAMFfGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c0aab9-781b80882f892d46750460a0;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 20:29:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _UTBzOCy8fX5BNktSzjbIo_0XiGySNSeo4t34pja9WYv1CuM_hygSA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 04 Jul 2022 15:24:03 GMT
age: 30675
etag: "245248a8bb7e566cfc35aaa1e83f2d9afdeb2990"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4200
Md5:    3869b8128e7d8a9f23ba26aabe4c718a
Sha1:   245248a8bb7e566cfc35aaa1e83f2d9afdeb2990
Sha256: 582f5382cb70f10b65794e8042fc0cbee11b11f030be39c87c7e2dc167622747
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8718223e-bfad-403b-ae83-afcbd382cadb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8241
x-amzn-requestid: cdabcbe8-5936-4547-8278-8bf49c07bcaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UwulYF-SoAMF_yA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c35e22-7591d2de58e1fb0006aff5e8;Sampled=0
x-amzn-remapped-date: Mon, 04 Jul 2022 21:39:46 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ATEY5g5HAC5x9ql6ofrkFBpjZujElOfZHETPOjiyn4u-B7g4Y8phlw==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 04 Jul 2022 21:56:13 GMT
age: 7145
etag: "90312a1902b10dc375f39a9e1ef8961c33c0be7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8241
Md5:    30f549fff99dd7275484446f9ab89baf
Sha1:   90312a1902b10dc375f39a9e1ef8961c33c0be7d
Sha256: f17fcd3a8abf75b88cbafef88d1b86d8fb6ef2e500b7320cf4069049a6352b95
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92d51796-7f0a-4373-989d-e3d45ed8d925.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7274
x-amzn-requestid: dcc00710-107a-46c2-8801-c8fb6f434e38
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UwukcG5XIAMFSGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c35e1c-422a2b1837922b5e7a250704;Sampled=0
x-amzn-remapped-date: Mon, 04 Jul 2022 21:39:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: np_5vA9oZK4JGw8b5zwN5EWbC__uCfsn0GVzuVU8NP3TDxjm6MAHsg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 04 Jul 2022 22:08:08 GMT
age: 6430
etag: "231c9ae0b5d376dd59f4749719c88611d4708252"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7274
Md5:    e07be3ffd2d8eadfa07ab2c3090026ce
Sha1:   231c9ae0b5d376dd59f4749719c88611d4708252
Sha256: c5b057ef01587fd89bd3c60dbff364565a238f7410e144f76edeb0f9ad48974e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3138a2a5-6ce8-4465-8dff-7307ebdd802f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 13276
x-amzn-requestid: 8e9cf5a0-c1fd-42f6-a117-735639bf60fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UnnVtEcUIAMFQNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bfb8f1-703fd654621d292404bcae42;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 03:18:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OY1dqbvd00cN59M8lfMzi7khizD13gcVNsrIhslwzrLc1kI42kURiw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 04 Jul 2022 12:41:34 GMT
age: 40424
etag: "7e5a550bbbac49269cae75ce9bb92e8fdf77b086"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13276
Md5:    95aa230a6b516a252f3815c586803c15
Sha1:   7e5a550bbbac49269cae75ce9bb92e8fdf77b086
Sha256: fc3c49de063a4e13c64e799664fa6c7ccf6e42aac5973aaf1af2b7689338f3b9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb156bf40-83c5-4d7e-a04a-93f719d05ead.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8607
x-amzn-requestid: b3b8af2d-9d05-463e-a72d-86f349bca2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UwukvER9IAMFViA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c35e1e-7e4ea25c0c2e8e3230690009;Sampled=0
x-amzn-remapped-date: Mon, 04 Jul 2022 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iIEWr3oI4-kjIJPk92ehyFSz72PmRMcBTvnBY98qplXRivRxHql3fg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 04 Jul 2022 22:11:32 GMT
age: 6226
etag: "00c409c96837ba3e01a486f245fef579df2ef290"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8607
Md5:    b025bd295e8dec725288f69773e8efe8
Sha1:   00c409c96837ba3e01a486f245fef579df2ef290
Sha256: b125cd91184d2f80e58e434c8854835cd79c71282725e4d2f1a70049328267b6