Report - barumalej.5v.pl/

Report Overview

Submitted URL
barumalej.5v.pl/
IP
37.187.156.46
ASN
#16276 OVH SAS
Submitted
2022-09-09 20:02:22
Access
public
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
a.spolecznosci.net	148930	2014-10-18T05:21:28Z	2023-03-14T06:46:19Z	775 B	684 B	164.132.7.102
fundingchoicesmessages.google.com	2397	2019-01-16T16:59:52Z	2023-03-17T05:32:32Z	387 B	93 kB	142.250.74.46
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-17T09:41:21Z	590 B	706 B	142.251.1.154
s.5v.pl	unknown	2018-08-20T06:29:49Z	2023-01-21T10:03:04Z	675 B	10 kB	95.217.209.65
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-17T09:53:07Z	656 B	1.5 kB	172.64.155.188
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-17T10:01:54Z	510 B	5.2 kB	216.58.207.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-17T08:37:51Z	329 B	737 B	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-17T05:09:22Z	2.3 kB	4.9 kB	142.250.74.3
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-17T09:19:11Z	876 B	21 kB	142.250.74.174
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-17T05:09:15Z	3.2 kB	43 kB	34.120.237.76
barumalej.5v.pl	unknown			3.7 kB	406 kB	37.187.156.46
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-17T05:10:35Z	321 B	229 B	34.117.237.239
liczniki.org	710062	2017-01-29T19:29:15Z	2023-03-12T23:19:18Z	277 B	358 B	94.23.92.123
5v.pl	864480	2014-01-22T09:03:10Z	2023-03-03T23:41:18Z	1.6 kB	2.8 kB	95.217.209.65
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-17T09:48:55Z	785 B	183 kB	142.250.74.66
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-17T05:10:36Z	594 B	127 B	100.20.30.105
ads.pubmatic.com	469	2012-05-21T05:56:35Z	2023-03-17T05:40:38Z	292 B	71 kB	23.38.200.201
spolecznosci.net	144423	2013-05-06T03:27:09Z	2023-03-14T06:46:23Z	1.6 kB	1.4 kB	164.132.7.102
spolecznosci.mgr.consensu.org	321367	2018-11-13T21:11:38Z	2023-03-14T06:46:17Z	372 B	340 B	164.132.7.109
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-17T05:09:04Z	758 B	2.7 kB	143.204.55.115
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-17T05:09:02Z	2.0 kB	5.3 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-17T05:10:36Z	401 B	5.8 kB	143.204.55.25

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-09	medium	barumalej.5v.pl/	Phishing
2022-09-09	medium	barumalej.5v.pl/Comic_Sans_MS.woff	Phishing
2022-09-09	medium	barumalej.5v.pl/Comic_Sans_MS.ttf	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	liczniki.org/hit.php?l=barumalej&o=1	109 B	2023-03-17	2023-03-17
Pretty URL liczniki.org/hit.php?l=barumalej&o=1 IP 94.23.92.123 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 55d7aea6b6e08145695185dcf6074e3c f5b7c9b72b73798b2ba956a84de25a73fc7c0a12 f4eef3ab132997e3981878f6ecc7b58b141168db472a58f7fc04ff3f18e2d577 Loading...

	s.5v.pl/robot.js	37 kB	2023-03-07	2023-05-19
Pretty URL s.5v.pl/robot.js IP 95.217.209.65 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:38:52 Last Seen2023-05-19 06:47:55 Times Seen7 Hash b867a694241bcf90431e7c5a595538c5 48f678a23bac7721d7191e0a064ed656b4c4dd5f 7dc6a17093cc564b09fd9c6886acd4265a947bcc1ab9aa3560fd5c621d735ea0 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	168 kB	2023-03-17	2023-03-17
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash c511109a50aad4bba2b5dda50b9fbd47 1db825db8ff54132aba677eeb626451ce10c940e f3ed0c0b008a72845e0b60fc71f68a586112608c57bd1e70d34156ca61172342 Loading...

	spolecznosci.net/js/modules/hb.js?h=69cb1f6a27a6dcf8d840	372 kB	2023-03-07	2023-03-17
Pretty URL spolecznosci.net/js/modules/hb.js?h=69cb1f6a27a6dcf8d840 IP 164.132.7.102 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:31:59 Last Seen2023-03-17 11:31:18 Times Seen1 Hash f614190e2736d86a2535d1eaa4ef5b67 607b382fd95c1f2625cd4f9567bbb2e715128d90 5c2d5d1e1beb5017aafddcf9aa000d629309c4feb0c450b750094f6fbcef6fd7 Loading...

	spolecznosci.mgr.consensu.org/js/cmp.stable.min.js	276 kB	2023-03-07	2023-03-17
Pretty URL spolecznosci.mgr.consensu.org/js/cmp.stable.min.js IP 164.132.7.109 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:38:52 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 068d9f5509034c27aca3d6d153c1aff1 b5822f608d5cdc91abd0f40a833f5c6ec06e4956 694fcc80f8ffbe2d92288bef11ebc5276e20529e481e63aa744b1005877a0145 Loading...

	fundingchoicesmessages.google.com/i/ca-pub-7627798501598014?ers=2	107 kB	2023-03-17	2023-03-17
Pretty URL fundingchoicesmessages.google.com/i/ca-pub-7627798501598014?ers=2 IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 5f9f7e4a5a8d0ac70226e18a6cb19c56 e6f8b0d70449b72d9fb9fd3ecacadd0b62db4d33 17d5014f8b815814a04297d0c2d549c6d1f2d24cf9a337cdb05ff436ebadbf28 Loading...

	fundingchoicesmessages.google.com/f/AGSKWxV45vu38VLGJMBIPHYTlOe6RCkGUfHPUfQPi4AksWhElpu1tEiSeVs-oPVCxDJQle6Vs-lSfP1lIzSx2It2cLpirRrwi0vnaxCf4ay-wawD2E5cgv8VEiYmyovKjgTjOaY43Jbixw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNjYyNzUzNzI1LDc5MDAwMDAwXSwiNDY4NUY2MTEtNjdCQy00MUMxLUIxNzItMDRGQkZDRDQ1NkQ0IixudWxsLG51bGwsW251bGwsWzcsMTBdLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwwLDBdLCJodHRwOi8vYmFydW1hbGVqLjV2LnBsLyIsbnVsbCxbWzgsInB4Z1hNTDRTTDdRIl1dXQ	6.7 kB	2023-03-17	2023-03-17
Pretty URL fundingchoicesmessages.google.com/f/AGSKWxV45vu38VLGJMBIPHYTlOe6RCkGUfHPUfQPi4AksWhElpu1tEiSeVs-oPVCxDJQle6Vs-lSfP1lIzSx2It2cLpirRrwi0vnaxCf4ay-wawD2E5cgv8VEiYmyovKjgTjOaY43Jbixw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNjYyNzUzNzI1LDc5MDAwMDAwXSwiNDY4NUY2MTEtNjdCQy00MUMxLUIxNzItMDRGQkZDRDQ1NkQ0IixudWxsLG51bGwsW251bGwsWzcsMTBdLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwwLDBdLCJodHRwOi8vYmFydW1hbGVqLjV2LnBsLyIsbnVsbCxbWzgsInB4Z1hNTDRTTDdRIl1dXQ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash e59cac39e051a2a7d4d1005db898f5cf ba4ca544cbcabe5afbb9c0c282c5a0497621ccfc c8fd164323e2efaf7164b52455b84cdb99071f890af91385303bf7b25d98dab6 Loading...

	barumalej.5v.pl/	191 B	2023-03-17	2023-12-25
Pretty URL barumalej.5v.pl/ IP 37.187.156.46 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-12-25 23:14:32 Times Seen3 Hash 85e0dabb78c3d8005765758a084c96d1 f36745f215984d74d985ab08bd9225b131fb2006 79ff3fa27fc3ca7900607579abe7698b1ce0ca09791bc6bda5c6a75398aa68df Loading...

	googleads.g.doubleclick.net/pagead/html/r20220907/r20190131/zrt_lookup.html	9.8 kB	2023-03-07	2023-03-17
Pretty URL googleads.g.doubleclick.net/pagead/html/r20220907/r20190131/zrt_lookup.html IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2023-03-17 12:34:28 Times Seen1 Hash 6aa4a9f5c41ec094e34bf62efbc7faa2 5341ef81dd1e320fb1bda8080313623a824ab6ae 74042f0292a7fc86224868355100287f70c7bda2338cddee850534ecc58a215b Loading...

	ads.pubmatic.com/AdServer/js/pwt/156036/6501/pwt.js	222 kB	2023-03-07	2023-03-26
Pretty URL ads.pubmatic.com/AdServer/js/pwt/156036/6501/pwt.js IP 23.38.200.201 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:31:59 Last Seen2023-03-26 03:35:21 Times Seen2 Hash 5396a412a76fd899286878073be09c35 f91d55674dba2c426543927d7adc094d8fb7796d de9677cb61ab4c2baa6cdd3c73f3ae97613cc8501142894b1c8800db14ac71c0 Loading...

	a.spolecznosci.net/core/ae0f62c3e1dade2b86293448f66bc29b/main.js	45 kB	2023-03-17	2023-03-17
Pretty URL a.spolecznosci.net/core/ae0f62c3e1dade2b86293448f66bc29b/main.js IP 164.132.7.102 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 9e46dd31cc471d2f107454424e809138 5e81750218f232b8fd94fd7de76611dfb420a9c3 1ebb841bf9a777f7ac5eed797a015fccc6665eb0f609bb0a62562d8e30caa0fd Loading...

	pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209070101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7627798501598014&plah=barumalej.5v.pl&bust=31069447	353 kB	2023-03-17	2023-03-17
Pretty URL pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209070101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7627798501598014&plah=barumalej.5v.pl&bust=31069447 IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash ba1c000be645118c7da3b628a9e075e0 db52ae2c501692ca0a55dc8c032650facaff5770 3cfbdce65e6559667aa55f40d5c128c10238d52e316d99a729bd620875517028 Loading...

	spolecznosci.net/js/modules/a.js?h=20295f7f3edcf93bb166	44 kB	2023-03-07	2023-03-17
Pretty URL spolecznosci.net/js/modules/a.js?h=20295f7f3edcf93bb166 IP 164.132.7.102 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:31:59 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 99cf493a4fc0608e8a9c44573fd404b5 bd10797db9f3e389afc0ea5261b132a47c60d803 9bbdf5d8b3c1af50aac70d10747e182aad829771470e3591ad956dab6450311d Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-05-09
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-09 09:39:13 Times Seen854 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	fundingchoicesmessages.google.com/f/AGSKWxU6umusM41hod2o8NfLE6Qd_lgc_xyZQvNaptXvrVwSZI15g0h3QOfhe6toy1njtfCezEIUXGzICY1C2hNU39E=?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNjYyNzUzNzI1LDI0MDAwMDAwXSwiNDY4NUY2MTEtNjdCQy00MUMxLUIxNzItMDRGQkZDRDQ1NkQ0IixudWxsLG51bGwsW251bGwsWzddLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCxmYWxzZSxmYWxzZV0sImh0dHA6Ly9iYXJ1bWFsZWouNXYucGwvIixudWxsLFtbOCwicHhnWE1MNFNMN1EiXV1d	6.2 kB	2023-03-17	2023-03-17
Pretty URL fundingchoicesmessages.google.com/f/AGSKWxU6umusM41hod2o8NfLE6Qd_lgc_xyZQvNaptXvrVwSZI15g0h3QOfhe6toy1njtfCezEIUXGzICY1C2hNU39E=?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNjYyNzUzNzI1LDI0MDAwMDAwXSwiNDY4NUY2MTEtNjdCQy00MUMxLUIxNzItMDRGQkZDRDQ1NkQ0IixudWxsLG51bGwsW251bGwsWzddLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCxmYWxzZSxmYWxzZV0sImh0dHA6Ly9iYXJ1bWFsZWouNXYucGwvIixudWxsLFtbOCwicHhnWE1MNFNMN1EiXV1d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 67abb47680cbd54b20c40a0d457885f8 fb84e9900e15cf876375351a0f1af8822b91dba0 324d343353aa965df4c78105ab923c029fea0f24bd4b8751a5abb40e3f5d32a8 Loading...

	s.5v.pl/spol.js	399 B	2023-03-17	2024-01-29
Pretty URL s.5v.pl/spol.js IP 95.217.209.65 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 11:31:18 Last Seen2024-01-29 19:19:52 Times Seen7 Hash 7eb0db3b5b475a91f422ae5295461ede 00fa96770ad1b4f6eab7f500332caed8c56c022d f170d8783211b339f9732f8bada0529e4ecf2942a0e099b52c66cc90f066221b Loading...

	spolecznosci.net/js/modules/au.js?h=3bdc8184586077fddb14	4.6 kB	2023-03-07	2023-03-17
Pretty URL spolecznosci.net/js/modules/au.js?h=3bdc8184586077fddb14 IP 164.132.7.102 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:31:59 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 55b1a78253bd23029f2bba3860f5ccf8 e732c5787822007f41079dc69d4debd0a6fab5cf d8453192ac64d84698d4a581fe746707a20351615592cc128a0b7bc12c4e08d4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

		Size	First Seen	Last Seen
	#1 Write - 0af88d6ab53df28303364745d6f9d4a6	89 B	2023-03-17	2023-03-17
Pretty Observations First Seen2023-03-17 11:31:18 Last Seen2023-03-17 11:31:18 Times Seen1 Hash 0af88d6ab53df28303364745d6f9d4a6 1a9c7524ee8de3f30a5d39eea3cc047535e3b345 19f9fecde575d99ece8149912e2563e4ca295719cb2b29de2dc2e1a2fffbb22a Loading...

HTTP Transactions (61)

URL IP Response Size

barumalej.5v.pl/

37.187.156.46

200 OK

1.3 kB

URL HTTP/1.1
barumalej.5v.pl/
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (316), with CRLF line terminators
Size
1.3 kB (1277 bytes)
Hash
9ca403a4609f062afd0af171b4bde07f
09c51f6840182441df79657042f6ddc79ab40356
54514ad301bfb9a44bf029a826dfce8abacca00bd7aab29359674f5efd49ddb1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 04 Jan 2022 16:34:18 GMT
ETag: W/"78c-5d4c4356935f0"
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 09 Sep 2022 19:05:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P8A1wL_IS4jNqgLn601eWgmn1g4nYNTM-5yGtUorQwUtTTBI9zYxOA==
Age: 3377

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f55e483f32b3fd50b1a2414aaada9b61
9d6b22edb98866e002e3b1ace44dfb0f8d00935f
4b09e1d2b887ded061e4ec5f82ec70ce699eeed428acc6b4fd3ef10ed9233c89

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14583
Expires: Sat, 10 Sep 2022 00:05:15 GMT
Date: Fri, 09 Sep 2022 20:02:12 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RY2_AE2ek7h9DBAf37nw8uidPVxpGjuROrECEXbATUrB5gssSCEiKg==
age: 58538
X-Firefox-Spdy: h2

barumalej.5v.pl/style.css

37.187.156.46

200 OK

6.4 kB

URL HTTP/1.1
barumalej.5v.pl/style.css
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
6.4 kB (6432 bytes)
Hash
7888eab4679f8c16a994e9de7888b7b8
1cc5b902e74281f87bfe5b38f85c2a824e64ffc7
78659f55172f08e7ee725ea062eee39146f77cf2dcd91c014829d7c6ce38e8ca

HTTP Headers

GET /style.css HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: text/css
Content-Length: 6432
Last-Modified: Tue, 20 Jul 2021 10:39:59 GMT
Connection: keep-alive
ETag: "60f6a7ff-1920"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

barumalej.5v.pl/m_witamy.jpg

37.187.156.46

200 OK

17 kB

URL HTTP/1.1
barumalej.5v.pl/m_witamy.jpg
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
JPEG image data, JFIF standard 1.02, resolution (DPCM), density 100x100, segment length 16, baseline, precision 8, 500x80, components 3\012- data
Size
17 kB (16599 bytes)
Hash
6b1b5c33d6f40b236853f205cf41ec03
cc02e6345ac3a369742a8f6741f343e21324af4f
ebf18c0f2e83824dc369e245abd61d22ae2b54f25b432c3c559c0b0288b891f7

HTTP Headers

GET /m_witamy.jpg HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/jpeg
Content-Length: 16599
Last-Modified: Tue, 20 Jul 2021 10:39:57 GMT
Connection: keep-alive
ETag: "60f6a7fd-40d7"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

barumalej.5v.pl/images/bg.gif

37.187.156.46

200 OK

830 B

URL HTTP/1.1
barumalej.5v.pl/images/bg.gif
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
GIF image data, version 89a, 15 x 16\012- data
Size
830 B (830 bytes)
Hash
ce64ec4b3bdfd7c3bf6a78fc12d2c6d2
df7ecbcda78f09bedf578ac79f92ac18d5c7ca31
fb0c69a10a5c4ef15b8a84796452994445f100aa85a7ad2d68afff93d66a6dd1

HTTP Headers

GET /images/bg.gif HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/gif
Content-Length: 830
Last-Modified: Tue, 20 Jul 2021 10:41:07 GMT
Connection: keep-alive
ETag: "60f6a843-33e"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

liczniki.org/hit.php?l=barumalej&o=1

94.23.92.123

200 OK

120 B

URL HTTP/1.1
liczniki.org/hit.php?l=barumalej&o=1
IP
94.23.92.123:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with no line terminators
Size
120 B (120 bytes)
Hash
2be4d7b0d33ddc7638d730edfa96e97e
4ccd5d9d7aa64883018147cb584f880d5344514b
d887899d2b8e5a7a955b4ee30642ff6225de4cee818f1ecdeb36bfe57d10c6e2

HTTP Headers

GET /hit.php?l=barumalej&o=1 HTTP/1.1
Host: liczniki.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:13 GMT
Server: Apache/2.4.10 (Debian)
Cache-Control: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 120
Connection: close
Content-Type: application/x-javascript

barumalej.5v.pl/Comic_Sans_MS.woff

37.187.156.46

404 Not Found

277 B

URL HTTP/1.1
barumalej.5v.pl/Comic_Sans_MS.woff
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
277 B (277 bytes)
Hash
a2e2127a1db7e62ef3abf70b2b5e29b9
571b0014d2417472fb33caf62094f9f171f7bee4
2fb58644331d5772fd6381ad7fcd550994f73e4b2c3d8512df5de1e60e303f69

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Comic_Sans_MS.woff HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 277
Connection: keep-alive

barumalej.5v.pl/images/body_bg.jpg

37.187.156.46

200 OK

8.6 kB

URL HTTP/1.1
barumalej.5v.pl/images/body_bg.jpg
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
JPEG image data, JFIF standard 1.02, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 950x20, components 3\012- data
Size
8.6 kB (8617 bytes)
Hash
af77bdd1bbc0fb387cfc95e6cae3c7a6
4edbc2c85a2e9aa34efc22c4b369fa5200dc55de
12126eff0aaa75fa4e91f31e6f9409a8c2e233931335eeadfd433f66b01ed8a3

HTTP Headers

GET /images/body_bg.jpg HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/jpeg
Content-Length: 8617
Last-Modified: Tue, 20 Jul 2021 10:41:08 GMT
Connection: keep-alive
ETag: "60f6a844-21a9"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c522c0b3ef818812462f70a6ec6394e5
9a0e6ffc5796b8642df0be0c7bf55890384a0bf9
4e69a31a757cc66d9e82d8ca3e5b9f2581fd3336bbc77a1e88ddac41c7343a67

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4E69A31A757CC66D9E82D8CA3E5B9F2581FD3336BBC77A1E88DDAC41C7343A67"
Last-Modified: Wed, 07 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9646
Expires: Fri, 09 Sep 2022 22:42:58 GMT
Date: Fri, 09 Sep 2022 20:02:12 GMT
Connection: keep-alive

barumalej.5v.pl/images/body_top.jpg

37.187.156.46

200 OK

12 kB

URL HTTP/1.1
barumalej.5v.pl/images/body_top.jpg
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
JPEG image data, JFIF standard 1.02, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 950x100, components 3\012- data
Size
12 kB (11582 bytes)
Hash
71dc4d928d327feaa2d5d5bc5eb76169
415736b7335ac454dd79dc4b73e0a60f0ed4d85c
cc858706db7c8f55460e7d64ec1c13e2391b81e111e6dbe313e0c46de420eafa

HTTP Headers

GET /images/body_top.jpg HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/jpeg
Content-Length: 11582
Last-Modified: Tue, 20 Jul 2021 10:41:09 GMT
Connection: keep-alive
ETag: "60f6a845-2d3e"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

barumalej.5v.pl/images/nav.jpg

37.187.156.46

200 OK

11 kB

URL HTTP/1.1
barumalej.5v.pl/images/nav.jpg
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
JPEG image data, JFIF standard 1.02, resolution (DPCM), density 100x100, segment length 16, baseline, precision 8, 910x60, components 3\012- data
Size
11 kB (11150 bytes)
Hash
bdc780e4abcc1782335f0fa441d12fe8
31e785e7101ebf03c6a5b7377cab07b9c35d546a
ccf1d633826c0bc5b69f61452bdd43071010b8a4c00b1b1daf4355ac1a268061

HTTP Headers

GET /images/nav.jpg HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/jpeg
Content-Length: 11150
Last-Modified: Tue, 20 Jul 2021 10:41:11 GMT
Connection: keep-alive
ETag: "60f6a847-2b8e"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

s.5v.pl/robot.js

95.217.209.65

200 OK

9.5 kB

URL HTTP/1.1
s.5v.pl/robot.js
IP
95.217.209.65:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (1673), with CRLF line terminators
Size
9.5 kB (9458 bytes)
Hash
f935caf7837a07a3f53d7775db5125ea
5ff3968e6b0c9c0a909385fd20b4446dbd35a0f6
90c26511064eb40b96ef559e85e42bf6a962b968937c3412c84d80e4cefba01a

HTTP Headers

GET /robot.js HTTP/1.1
Host: s.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:12 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 05 May 2022 13:33:36 GMT
ETag: "8fcc-5de43c9f897d2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 17
Content-Length: 9458
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

barumalej.5v.pl/images/body_bot.jpg

37.187.156.46

200 OK

14 kB

URL HTTP/1.1
barumalej.5v.pl/images/body_bot.jpg
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
JPEG image data, JFIF standard 1.02, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 950x100, components 3\012- data
Size
14 kB (14199 bytes)
Hash
9f7f003927132321c16ec2f52330cc60
7d47e3afc4c119f5f841b8cb70fefc0d1e57fe6f
e8160e18119dbef6323d7d01e46fc02b5b13d7b29bc4244952f491171c329cb2

HTTP Headers

GET /images/body_bot.jpg HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/jpeg
Content-Length: 14199
Last-Modified: Tue, 20 Jul 2021 10:41:08 GMT
Connection: keep-alive
ETag: "60f6a844-3777"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

barumalej.5v.pl/images/header.jpg

37.187.156.46

200 OK

80 kB

URL HTTP/1.1
barumalej.5v.pl/images/header.jpg
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 950x320, components 3\012- data
Size
80 kB (80127 bytes)
Hash
f0105f55662d1d45fede8b4675becf2a
f165582b865808941efa7c9b1b19354fb1479291
5a762a3e5a2f0fa9c5265f624cbf4f17c54517123470416f5475d4cdf6e84d93

HTTP Headers

GET /images/header.jpg HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/jpeg
Content-Length: 80127
Last-Modified: Tue, 20 Jul 2021 10:41:11 GMT
Connection: keep-alive
ETag: "60f6a847-138ff"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
511ba8194d7c34c3f5a5e916f3d55a80
a27363fc2fb57a724a4cdfece6604cdb2fbf56fd
63ae01704b4f5b970d7428a8a747e95dc4e7a446dfed9f13e4d7914cd4ad51dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63AE01704B4F5B970D7428A8A747E95DC4E7A446DFED9F13E4D7914CD4AD51DC"
Last-Modified: Wed, 07 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3208
Expires: Fri, 09 Sep 2022 20:55:40 GMT
Date: Fri, 09 Sep 2022 20:02:12 GMT
Connection: keep-alive

barumalej.5v.pl/Comic_Sans_MS.ttf

37.187.156.46

200 OK

246 kB

URL HTTP/1.1
barumalej.5v.pl/Comic_Sans_MS.ttf
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
TrueType Font data, digitally signed, 22 tables, 1st "DSIG", 46 names, Macintosh, \251 2018 Microsoft Corporation. All Rights Reserved.Comic Sans MSRegularMicrosoft Comic SansVer\012- data
Size
246 kB (245600 bytes)
Hash
cb5a21a92d77658df1beee4d51b72777
719814ba2118b98576bf248ace6eedcb6e432bc7
a7da3ef195158acd8432226a21f2940f1806a9c8d079f18d0a9ab475f50f9659

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Comic_Sans_MS.ttf HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: font/ttf
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Jul 2021 10:39:43 GMT
ETag: "3bf60-5c78babffed76"
Accept-Ranges: bytes

5v.pl/stats.php?name=barumalej

95.217.209.65

200 OK

24 B

URL HTTP/1.1
5v.pl/stats.php?name=barumalej
IP
95.217.209.65:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with no line terminators
Size
24 B (24 bytes)
Hash
b9ff57fe759eafbf02f72207bb8dc823
069a5ef71baace42f5a08c120cf15994c1f1df21
7e69ce712f703a5d23bfdaeb55d825924cb2d0ffc2465e876c2b06b24d76f232

HTTP Headers

GET /stats.php?name=barumalej HTTP/1.1
Host: 5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://barumalej.5v.pl
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:12 GMT
Server: Apache/2.4.25 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=rn693u8i6d6f4e72fc7f3fa8g5; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Length: 24
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 09 Sep 2022 19:56:07 GMT
Expires: Fri, 09 Sep 2022 20:52:54 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LaK9TNlRkc32ZPiwIOxEduWxEQgZGTxY5PS8Hoq9E9XEjhg__hFgbQ==
Age: 365

5v.pl/ads.php?lang=other&name=barumalej&mobile=0&page_url=http://barumalej.5v.pl/

95.217.209.65

200 OK

602 B

URL HTTP/1.1
5v.pl/ads.php?lang=other&name=barumalej&mobile=0&page_url=http://barumalej.5v.pl/
IP
95.217.209.65:0
ASN
#24940 Hetzner Online GmbH

File type
JSON data\012- , ASCII text, with very long lines (1990), with no line terminators
Size
602 B (602 bytes)
Hash
577129d7057517626854d9f9ded82944
612a766da012ded9a6b1781b9caa8a97513d3803
b0b189dbe27e65d1422011e7c04055ebef4dc0d93053f252c5d292d01411747d

HTTP Headers

GET /ads.php?lang=other&name=barumalej&mobile=0&page_url=http://barumalej.5v.pl/ HTTP/1.1
Host: 5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://barumalej.5v.pl
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:12 GMT
Server: Apache/2.4.25 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=5l46hke7ge7n9nbfn5fdeoelq0; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Length: 602
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

5v.pl/popunder.php?id=110&name=barumalej

95.217.209.65

200 OK

35 B

URL HTTP/1.1
5v.pl/popunder.php?id=110&name=barumalej
IP
95.217.209.65:0
ASN
#24940 Hetzner Online GmbH

File type
JSON data\012- , ASCII text, with no line terminators
Size
35 B (35 bytes)
Hash
24f467b24087ff48c96321786d89c69f
dbcfbbac8433ebec3425f3353338eae790017d9e
cb19082a07c8527d3d3b02bce8942292c81983da38f2ff6934b087a5c3db0dc2

HTTP Headers

GET /popunder.php?id=110&name=barumalej HTTP/1.1
Host: 5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://barumalej.5v.pl
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:12 GMT
Server: Apache/2.4.25 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=7j8mf5gehjnq2h5tt3q2plg9i0; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Length: 35
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

s.5v.pl/spol.js

95.217.209.65

200 OK

285 B

URL HTTP/1.1
s.5v.pl/spol.js
IP
95.217.209.65:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
285 B (285 bytes)
Hash
c38d3001d98a7ed5155391ebff2d79c6
a1d3797cb938e3d2f336ad488ec9b29961823786
5aebed753110ddc4ac2902c896ed59bd2f81c0d2ff7c3465f8c1155af853fdf7

HTTP Headers

GET /spol.js HTTP/1.1
Host: s.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:12 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Wed, 01 Apr 2020 13:29:45 GMT
ETag: "18f-5a23aad6da440-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 10
Content-Length: 285
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

5v.pl/popunder.php?id=109&name=barumalej

95.217.209.65

200 OK

35 B

URL HTTP/1.1
5v.pl/popunder.php?id=109&name=barumalej
IP
95.217.209.65:0
ASN
#24940 Hetzner Online GmbH

File type
JSON data\012- , ASCII text, with no line terminators
Size
35 B (35 bytes)
Hash
24f467b24087ff48c96321786d89c69f
dbcfbbac8433ebec3425f3353338eae790017d9e
cb19082a07c8527d3d3b02bce8942292c81983da38f2ff6934b087a5c3db0dc2

HTTP Headers

GET /popunder.php?id=109&name=barumalej HTTP/1.1
Host: 5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://barumalej.5v.pl
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:12 GMT
Server: Apache/2.4.25 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=mnf6ta4fvrk78rt26asl7nrbs5; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Length: 35
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

barumalej.5v.pl/favicon.ico

37.187.156.46

200 OK

6.2 kB

URL HTTP/1.1
barumalej.5v.pl/favicon.ico
IP
37.187.156.46:0
ASN
#16276 OVH SAS

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
6.2 kB (6180 bytes)
Hash
8c1e0838bb842c2b7a9d1d183fbfa393
8a52ed17a0fdbd37b44ffff835e51389dee908a4
e01d3bde3eb2b7c414360052c635f85c2cb1efa25353b241bf2145b06522026f

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: barumalej.5v.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: image/x-icon
Content-Length: 6180
Last-Modified: Tue, 20 Jul 2021 10:39:46 GMT
Connection: keep-alive
ETag: "60f6a7f2-1824"
Expires: Mon, 04 Sep 2023 20:02:12 GMT
Cache-Control: max-age=31104000
Accept-Ranges: bytes

ocsp.sectigo.com/

172.64.155.188

200 OK

281 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
281 B (281 bytes)
Hash
dba4c03cb67ac45a7f27ddbe9495a719
003aca450113994822acb050748b414c7d031c5d
da2b0b02e7df0f1c821b2451040392fbd1feff56a7bae9f1c42e257cdfec569a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:12 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 14:33:09 GMT
Expires: Thu, 15 Sep 2022 14:33:08 GMT
Etag: "003aca450113994822acb050748b414c7d031c5d"
Cache-Control: max-age=498055,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7482852ead29b511-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d0c56e0b2955a5dd7f37ba4bbf5727b4
f435bd1f6fb8ec931f1817fe4b91e6b86a7cb14b
99f7da9dca677db8e9cec5491c0d6d8a86b9c5e907907c2fdd30973c747f4282

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1672
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:12 GMT
Last-Modified: Fri, 09 Sep 2022 19:34:20 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js

142.250.74.66

200 OK

57 kB

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2903)
Size
57 kB (57405 bytes)
Hash
12ae40573c015a7575fb0176c033d85e
8d9dbcb9b612b9142752bada2a04c65c75c96db6
812f4f7cf633ef4f9f4e618b431597296394d4dc2eb5c4ddd6a237479c909373

HTTP Headers

GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Fri, 09 Sep 2022 20:02:12 GMT
Expires: Fri, 09 Sep 2022 20:02:12 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 15066168682571591444
Vary: Accept-Encoding, Origin
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 57405
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dad8f08be4d6d5166c7f54004cb37c64
949b5738d5c880445510774f1da0e0af667308b3
398205f8248c3e00126eb21e6cb1d4e21a981a1b46d59ff4993e6023f33c6b9f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dad8f08be4d6d5166c7f54004cb37c64
949b5738d5c880445510774f1da0e0af667308b3
398205f8248c3e00126eb21e6cb1d4e21a981a1b46d59ff4993e6023f33c6b9f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/html/r20220907/r20190131/zrt_lookup.html

216.58.207.226

200 OK

4.4 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/html/r20220907/r20190131/zrt_lookup.html
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Size
4.4 kB (4412 bytes)
Hash
09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde

HTTP Headers

GET /pagead/html/r20220907/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Thu, 08 Sep 2022 20:41:14 GMT
expires: Thu, 22 Sep 2022 20:41:14 GMT
cache-control: public, max-age=1209600
age: 84059
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209070101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7627798501598014&plah=barumalej.5v.pl&bust=31069447

142.250.74.66

200 OK

124 kB

URL HTTP/2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209070101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7627798501598014&plah=barumalej.5v.pl&bust=31069447
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (5015)
Size
124 kB (124398 bytes)
Hash
9a32fd5ebfae14ba4b31306ebbb3a9ba
b36946856bf0e4bdbed1eb80d20a8abc8ed4a3b1
90a19c5f89f975a0bb3ed53231d14d971fea3ce706861f559f6561bbe4cbb1f7

HTTP Headers

GET /pagead/managed/js/adsense/m202209070101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7627798501598014&plah=barumalej.5v.pl&bust=31069447 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 09 Sep 2022 20:02:13 GMT
expires: Fri, 09 Sep 2022 20:02:13 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 3205491251095572530
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 124398
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

a.spolecznosci.net/geo_eu

164.132.7.102

200 OK

33 B

URL HTTP/2
a.spolecznosci.net/geo_eu
IP
164.132.7.102:0
ASN
#16276 OVH SAS

File type
JSON data\012- , ASCII text, with no line terminators
Size
33 B (33 bytes)
Hash
f6d12b59c69906836a21304b7c30bb9a
8aa99238e8b4cd2362386f57a5e1c1d4cfd693f6
d388e17cd680b50b73beb3e1e9a1aed323a6afc8b8d2dfd8b204109c83522006

HTTP Headers

GET /geo_eu HTTP/1.1
Host: a.spolecznosci.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://barumalej.5v.pl
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:13 GMT
content-type: application/json; charset=utf-8
content-length: 33
access-control-allow-origin: *
cache-control: private, max-age=86400
expires: Sat, 10 Sep 2022 20:02:13 GMT
x-cache: MISS
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

push.services.mozilla.com/

100.20.30.105

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
100.20.30.105:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: P12h18KZ06IYUvIVeO6CwQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RKXFqpBc+5I+ClT8diu8xc8YWq0=

ocsp.sectigo.com/

172.64.155.188

200 OK

282 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
282 B (282 bytes)
Hash
4821dff5880e711f07c279648814baed
f4bffac700deaf894891f74584f5baaa44ec6b8a
b0bf13cd4ed2a656968c2e23d2c93b3ad5e260815a2bbbb6a71a61ba035208c2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 20:02:13 GMT
Content-Type: application/ocsp-response
Content-Length: 282
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 08:15:07 GMT
Expires: Wed, 14 Sep 2022 08:15:06 GMT
Etag: "f4bffac700deaf894891f74584f5baaa44ec6b8a"
Cache-Control: max-age=388972,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748285304f66b511-OSL

ads.pubmatic.com/AdServer/js/pwt/156036/6501/pwt.js

23.38.200.201

200 OK

70 kB

URL HTTP/1.1
ads.pubmatic.com/AdServer/js/pwt/156036/6501/pwt.js
IP
23.38.200.201:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (65536), with no line terminators
Size
70 kB (70394 bytes)
Hash
e79d5784c9dcbb78cc3a46eb88a0b1b9
9979d6c8b2f9c479f8a35ec26222ed15b9217872
c1d34492ddb0abfd7cb24d834e90474d1f47a6bea4e296f26e92acd767ab0a2a

HTTP Headers

GET /AdServer/js/pwt/156036/6501/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Fri, 08 Apr 2022 12:45:50 GMT
ETag: "18e268b-36277-5dc23f96f7da0"
Accept-Ranges: bytes
Content-Encoding: gzip
P3P: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
Content-Type: text/javascript
Content-Length: 70394
Cache-Control: max-age=165564
Expires: Sun, 11 Sep 2022 18:01:37 GMT
Date: Fri, 09 Sep 2022 20:02:13 GMT
Connection: keep-alive
Vary: Accept-Encoding

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ede92f781233f857c299e00d2090aeba
b7296da3b0981e9c1937bf8ebc73d5138c5fa19a
16a97da8a523d4cb06430ff26d026d14377c888e5e80a78937afba38fded3122

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
90af7f9fc306540e02535db3d00dca64
9e05b003b35ed57277b6b295adde93add7c41b0b
64abd990305ef3f25ffb3fb2ccae04b76e178375752ecb2020411df8f7974fcf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/1.1
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20006
Date: Fri, 09 Sep 2022 18:20:38 GMT
Expires: Fri, 09 Sep 2022 20:20:38 GMT
Cache-Control: public, max-age=7200
Age: 6095
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript

www.google-analytics.com/collect?v=1&_v=j96&a=436881672&t=event&_s=2&dl=http%3A%2F%2Fbarumalej.5v.pl%2F&ul=en-us&de=UTF-8&dt=%22U%20Ma%C5%82ej%22%20-%20BAR&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=barumalej&ea=subdomain&_u=IEBAAEABAAAAAC~&jid=&gjid=&cid=1260576638.1662753725&tid=UA-18174222-16&_gid=1612550305.1662753725&z=969684899

142.250.74.174

200 OK

35 B

URL HTTP/1.1
www.google-analytics.com/collect?v=1&_v=j96&a=436881672&t=event&_s=2&dl=http%3A%2F%2Fbarumalej.5v.pl%2F&ul=en-us&de=UTF-8&dt=%22U%20Ma%C5%82ej%22%20-%20BAR&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=barumalej&ea=subdomain&_u=IEBAAEABAAAAAC~&jid=&gjid=&cid=1260576638.1662753725&tid=UA-18174222-16&_gid=1612550305.1662753725&z=969684899
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /collect?v=1&_v=j96&a=436881672&t=event&_s=2&dl=http%3A%2F%2Fbarumalej.5v.pl%2F&ul=en-us&de=UTF-8&dt=%22U%20Ma%C5%82ej%22%20-%20BAR&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=barumalej&ea=subdomain&_u=IEBAAEABAAAAAC~&jid=&gjid=&cid=1260576638.1662753725&tid=UA-18174222-16&_gid=1612550305.1662753725&z=969684899 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barumalej.5v.pl/

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Fri, 09 Sep 2022 06:08:18 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Age: 50035
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
54f9e2ed11c19f565afc5d45d2f1e499
5c933cf89e4be594a152d7b1aa7bed6ab42169df
1deae88857366dba09c5e498d9067529377741b3c51b711b4adb88d861f58718

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fundingchoicesmessages.google.com/i/ca-pub-7627798501598014?ers=2

142.250.74.46

200 OK

91 kB

URL HTTP/2
fundingchoicesmessages.google.com/i/ca-pub-7627798501598014?ers=2
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
data
Size
91 kB (91347 bytes)
Hash
6a6db1f6c7e397fde5f73353d4ef449a
a6bfd2af4d43fa472a602a28ef59432a0c7603da
5b5bf3debb8b99540d1961f141b71104939ae1d3f6653b066d37207aa74532ec

HTTP Headers

GET /i/ca-pub-7627798501598014?ers=2 HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Sep 2022 20:02:13 GMT
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'nonce-y9MGUnkW9zlj8X7ZwWxGqA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorServingWebSwitchboardHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 20:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-18174222-16&cid=1260576638.1662753725&jid=1880017550&gjid=1329808845&_gid=1612550305.1662753725&_u=IEBAAEAAAAAAAC~&z=393744154

142.251.1.154

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-18174222-16&cid=1260576638.1662753725&jid=1880017550&gjid=1329808845&_gid=1612550305.1662753725&_u=IEBAAEAAAAAAAC~&z=393744154
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-18174222-16&cid=1260576638.1662753725&jid=1880017550&gjid=1329808845&_gid=1612550305.1662753725&_u=IEBAAEAAAAAAAC~&z=393744154 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://barumalej.5v.pl
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://barumalej.5v.pl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Sep 2022 20:02:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9930
Expires: Fri, 09 Sep 2022 22:47:44 GMT
Date: Fri, 09 Sep 2022 20:02:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9930
Expires: Fri, 09 Sep 2022 22:47:44 GMT
Date: Fri, 09 Sep 2022 20:02:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9930
Expires: Fri, 09 Sep 2022 22:47:44 GMT
Date: Fri, 09 Sep 2022 20:02:14 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5f31e9e-7d20-466c-a9b3-ce9e9c5475e8.jpeg

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5f31e9e-7d20-466c-a9b3-ce9e9c5475e8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9011 bytes)
Hash
ba8d1b764c2d18807caecb5ee1e046c0
c0e3d10ce67f77a92b54954410e30621af7ee87c
f558c4827c2edf896588b6e3f0b4f295269e95f86143b40729a7a2a5e1adbbb6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5f31e9e-7d20-466c-a9b3-ce9e9c5475e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9011
x-amzn-requestid: cf861da4-5f3b-43b8-931a-5285839c6301
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQgHFbOoAMFYVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a6133-4cf2e37f5e762a557b081446;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:40:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: wqcl8zkszPZhWjJ7mr_p82IRaNzU2vMV3wtipUYgRaL7Vj3ntmYYqQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:47:07 GMT
age: 80107
etag: "c0e3d10ce67f77a92b54954410e30621af7ee87c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F498f96cc-d02c-4ca3-a7e2-0be324253465.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.1 kB (3125 bytes)
Hash
0078c7a407144a1ede33aef6f734eecf
113393e0dbabb3aff949d19ab6517ba1082b622d
42afcaf15e45dfa9aff14f59f69d60a3de127005e35783d2d35a4cfa652b57b3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F498f96cc-d02c-4ca3-a7e2-0be324253465.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3125
x-amzn-requestid: 5820e798-6469-40f9-8d70-ee71f1a163b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLM5GGQAoAMF8eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ac1d3-3a0e9db848ea7ab145f1cffa;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 04:32:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: eZaKpjBYe3Qn7vs3zF52Cxob-xu3LMFs8esQAu6Lp6bzM0aOEHoXVg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 04:32:20 GMT
etag: "113393e0dbabb3aff949d19ab6517ba1082b622d"
content-type: image/jpeg
age: 55794
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F793f20c6-757e-47e5-8ab6-4d73ceae75af.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (4002 bytes)
Hash
c9590b525c8b07a297c8784f02b161a1
cec8428d159a5bde29e89c64cfb04146f759d52b
d309772ce79d36f7b1df0a3ea85a01f8278db2909c860721d105b772efed82ed

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F793f20c6-757e-47e5-8ab6-4d73ceae75af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4002
x-amzn-requestid: ea2f5309-e220-4b7e-b718-9339b9444cc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQ6hHM8IAMFeJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a61dc-7d45fd9253b7b7fa732b6f8d;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:42:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: VD7SlrM2RwFk5cfQvul2bTJA__GPYd5_UPY0D0_5NGLHoBj3yur7PA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:15:21 GMT
age: 78413
etag: "cec8428d159a5bde29e89c64cfb04146f759d52b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7515 bytes)
Hash
60fa03262bb3728f24a4c7a8177ec788
09dcbdc6043f01dd56920cca3ce3920d0d07b795
e7448f186933f9848f1d55f0e8dba593918846d02fb9cc3a7cd86d69b96a7fde

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7515
x-amzn-requestid: eaf81b32-3b53-4e89-a9d0-943bc9f9982f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0j0QFhxoAMF-Mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311b34e-114287d30092033a2b54ec01;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:39:58 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: _mlXN3nJ7ZPcUDWIqqiv2CB6dkSJ2Y-AZIXNs4xOj18ZX6DYMdhXAA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:46:19 GMT
age: 80155
etag: "09dcbdc6043f01dd56920cca3ce3920d0d07b795"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc632269f-fb89-42dc-acc4-f733f3d7beb7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4532 bytes)
Hash
a5fdeb374d4e3669ce5d9ff2cd22cd19
70ede5692526afd351d134a391383461dafdc64f
10c5d8e41aae1a36525a45375966b5067333f0c7edc176a540fd6527ebe1ad8c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc632269f-fb89-42dc-acc4-f733f3d7beb7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4532
x-amzn-requestid: e5694699-7f38-4542-8808-54bda7ee7d86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIMmGGUmIAMF2cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63198e26-1aa6788e24fcfdf0008bee21;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 06:39:34 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zdVUahmbPQ7sQMlg14M89JOwjN2PEM03GNLYEwxPjcaioRpyqb8isA==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:26:32 GMT
age: 77742
etag: "70ede5692526afd351d134a391383461dafdc64f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9258cc3-ebbf-4d4c-85d1-6bc185623583.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8354 bytes)
Hash
7afe346e3b24ea4388913b449d1ffc42
f5348ba99fb8966dded580409108316f4e4e1237
1d1cafc3e99c20b23212679838567d4d5fc98c45cf902188e44b25ff2982c8ad

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9258cc3-ebbf-4d4c-85d1-6bc185623583.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8354
x-amzn-requestid: 55971de2-bf63-4300-9007-1bc234962d0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKRKXFGTIAMFp3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a6242-23914ec672a0a898498bbed6;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:44:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: lxqcvxSdM4FBQBZTNnhCrpl02fsnInyii7Yaw7fs4STzEd2fZIuuXA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:45:36 GMT
etag: "f5348ba99fb8966dded580409108316f4e4e1237"
content-type: image/jpeg
age: 80198
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

spolecznosci.net/js/modules/hb.js?h=69cb1f6a27a6dcf8d840

164.132.7.102

200 OK

0 B

URL HTTP/2
spolecznosci.net/js/modules/hb.js?h=69cb1f6a27a6dcf8d840
IP
164.132.7.102:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/modules/hb.js?h=69cb1f6a27a6dcf8d840 HTTP/1.1
Host: spolecznosci.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:13 GMT
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 10:13:15 GMT
vary: Accept-Encoding
expires: Sat, 09 Sep 2023 20:02:13 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

spolecznosci.net/js/modules/au.js?h=3bdc8184586077fddb14

164.132.7.102

200 OK

0 B

URL HTTP/2
spolecznosci.net/js/modules/au.js?h=3bdc8184586077fddb14
IP
164.132.7.102:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/modules/au.js?h=3bdc8184586077fddb14 HTTP/1.1
Host: spolecznosci.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:13 GMT
content-type: application/javascript
last-modified: Thu, 21 Apr 2022 05:58:53 GMT
vary: Accept-Encoding
expires: Sat, 09 Sep 2023 20:02:13 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

spolecznosci.mgr.consensu.org/js/cmp.stable.min.js

164.132.7.109

200 OK

0 B

URL HTTP/2
spolecznosci.mgr.consensu.org/js/cmp.stable.min.js
IP
164.132.7.109:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/cmp.stable.min.js HTTP/1.1
Host: spolecznosci.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:13 GMT
content-type: application/javascript
last-modified: Thu, 17 Feb 2022 09:20:57 GMT
vary: Accept-Encoding
expires: Fri, 09 Sep 2022 21:02:13 GMT
cache-control: max-age=3600, public
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

a.spolecznosci.net/core/ae0f62c3e1dade2b86293448f66bc29b/main.js

164.132.7.102

200 OK

0 B

URL HTTP/2
a.spolecznosci.net/core/ae0f62c3e1dade2b86293448f66bc29b/main.js
IP
164.132.7.102:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /core/ae0f62c3e1dade2b86293448f66bc29b/main.js HTTP/1.1
Host: a.spolecznosci.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:12 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Fri, 09 Sep 2022 20:07:12 GMT
x-cache: EXPIRED
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

spolecznosci.net/js/modules/rn.js?h=9059b8386b3e129eae79

164.132.7.102

200 OK

0 B

URL HTTP/2
spolecznosci.net/js/modules/rn.js?h=9059b8386b3e129eae79
IP
164.132.7.102:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/modules/rn.js?h=9059b8386b3e129eae79 HTTP/1.1
Host: spolecznosci.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:13 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 07:05:09 GMT
vary: Accept-Encoding
expires: Sat, 09 Sep 2023 20:02:13 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

spolecznosci.net/js/modules/a.js?h=20295f7f3edcf93bb166

164.132.7.102

200 OK

0 B

URL HTTP/2
spolecznosci.net/js/modules/a.js?h=20295f7f3edcf93bb166
IP
164.132.7.102:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/modules/a.js?h=20295f7f3edcf93bb166 HTTP/1.1
Host: spolecznosci.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barumalej.5v.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 20:02:13 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 07:05:09 GMT
vary: Accept-Encoding
expires: Sat, 09 Sep 2023 20:02:13 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations