Report - znuiepf.com.ua/

Report Overview

Submitted URL
znuiepf.com.ua/
IP
142.132.131.203
ASN
#24940 Hetzner Online GmbH
Submitted
2022-09-02 09:26:04
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	746 B	3.5 kB	216.58.211.10
oaphoace.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	69 kB	139.45.197.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.39.57.61
offerimage.com	304078	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	66 kB	104.22.33.172
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	61 kB	34.120.237.76
znuiepf.com.ua	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.2 kB	806 kB	142.132.131.203
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	742 B	139.45.195.8
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
niwooghu.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	179 kB	139.45.197.237
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	656 B	1.9 kB	172.64.155.188
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	7.1 kB	23.36.77.32
static.getbutton.io	31869	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	646 B	95 kB	176.9.188.20
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	138 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-02	medium	oaphoace.net	Sinkholed
2022-09-02	medium	niwooghu.com	Sinkholed
2022-09-02	medium	oaphoace.net	Sinkholed
2022-09-02	medium	niwooghu.com	Sinkholed
2022-09-02	medium	oaphoace.net	Sinkholed
2022-09-02	medium	oaphoace.net	Sinkholed
2022-09-02	medium	niwooghu.com	Sinkholed

JavaScript (20)

	URL	Size	First Seen	Last Seen
	znuiepf.com.ua/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.1	12 kB	2023-03-07	2024-04-19
Pretty URL znuiepf.com.ua/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.1 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:09 Last Seen2024-04-19 15:34:19 Times Seen2426 Hash 862c82d8373e4d69aa5af6c994389bda 042bb60eee9e7dbffcbd43d529517e562f97f455 d0ba7e2275cddbdf3d2473a60565d950efb8474ba7bda393cc64f56ff39d85ce Loading...

	znuiepf.com.ua/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7	14 kB	2023-03-07	2024-04-25
Pretty URL znuiepf.com.ua/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-25 12:50:40 Times Seen7905 Hash eaa8641bcda2371f4024a71fbb67de3b 0e46c39d3821683c856605a82254115f9a6a7792 0c5f584d1ea2c3313dc8c55824c2a572d3cf2eae87c5ca62a58e598aec9ddb5c Loading...

	znuiepf.com.ua/wp-content/themes/education-hub/js/custom.min.js?ver=1.0	632 B	2023-03-07	2024-04-25
Pretty URL znuiepf.com.ua/wp-content/themes/education-hub/js/custom.min.js?ver=1.0 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2024-04-25 20:11:40 Times Seen15 Hash 67978677162dcee792f82e25f1ff8097 719e995d1a8c57aa66799b973e1215153422a31f 6de3bc6e513052895ca2d762688c8d1769ae0702fcb738879e9d2ea02806bb02 Loading...

	znuiepf.com.ua/	371 B	2023-03-07	2023-11-26
Pretty URL znuiepf.com.ua/ IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-11-26 11:04:22 Times Seen4 Hash 638bc2a278ac3c148fdc65d85ce7d8e6 64351614c7f11fd5a145f340e2061fadbc7dfdda caa9411cb786f555139d0607aea94a4b04fa39942be3f1655975e3853ae066e3 Loading...

	oaphoace.net/401/5330193	81 kB	2023-03-07	2023-03-07
Pretty URL oaphoace.net/401/5330193 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash 55a97971a3b85158c600faf79461c601 add8fea216dd9ee5da240c73a65e50e74ef79ddd b476e886541ac34ab13600ae3758d3acfebf09061a154fc11b8a3b9f02742d36 Loading...

	znuiepf.com.ua/	176 B	2023-03-07	2023-03-07
Pretty URL znuiepf.com.ua/ IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash c283781530b29b2e36653302d80035c7 a5741c4f99a0774893cfb56ea1ce9db3246bf86f 0ba5d2f494c953c96557344371517a160aa2c384aa3183ae6e69db1385f28f20 Loading...

	znuiepf.com.ua/	694 B	2023-03-07	2023-03-07
Pretty URL znuiepf.com.ua/ IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash a98322341e8357b1c5801fa5798e6242 da8533e6d7153c2313d1077b57e44a1c68b5e462 02726d47c491ddb8112bef31fb8dd8d14abf763623d50c3e114f9b2c77b58645 Loading...

	znuiepf.com.ua/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115	557 B	2023-03-07	2024-04-25
Pretty URL znuiepf.com.ua/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:05 Last Seen2024-04-25 20:11:40 Times Seen238 Hash dea2d1887d3a260af2791c5e97b8ba43 a13dc5c638242f2117cdde2121bbaed9fd538566 818266fe4b7bbf0fe187b6190933c99af05829f70c2d6023acab03f8af5a59b0 Loading...

	static.getbutton.io/widget-send-button/js/init.js	304 kB	2023-03-07	2024-03-24
Pretty URL static.getbutton.io/widget-send-button/js/init.js IP 176.9.188.20 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2024-03-24 19:48:11 Times Seen2 Hash 256d5c9273e57c3d339a66a903d39e22 047c4076f327f854a4501284c4386f0278cfe5ac 36b618a3a55b2787d7a41107ad3750c3cdcc8bd2f18cfd56a6f8cd268e90fcad Loading...

	znuiepf.com.ua/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6	23 kB	2023-03-07	2024-04-25
Pretty URL znuiepf.com.ua/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2024-04-25 20:11:40 Times Seen344 Hash b9bef20cec2d668923eb248733b3955e 8bbbca8502749ad9d770717c8dc39cf2892ea730 87a1a7e65f6ceed57d27b07cac22836a7682617932fc9d4376887b0ae1754a35 Loading...

	znuiepf.com.ua/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL znuiepf.com.ua/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 16:08:31 Times Seen68676 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 16:24:45 Times Seen37095767 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	znuiepf.com.ua/wp-includes/js/jquery/jquery.min.js?ver=3.5.1	90 kB	2023-03-07	2024-04-25
Pretty URL znuiepf.com.ua/wp-includes/js/jquery/jquery.min.js?ver=3.5.1 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-25 22:19:48 Times Seen9450 Hash b6f7093369a0e8b83703914ce731b13c d1889f5c173c2a4b20288f1f84758599afd346ef 60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827 Loading...

	znuiepf.com.ua/	1.3 kB	2023-03-07	2023-03-07
Pretty URL znuiepf.com.ua/ IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash b7215875a8829a20b80ff669188cb4e9 9b4ece254e4caa36ec138106f756b0ea2665eda5 f17e0cdb03cf1f208cdba329f0127c87a1a289d8a1d474f2dccccb8c53b93034 Loading...

	znuiepf.com.ua/	2.1 kB	2023-03-07	2023-03-07
Pretty URL znuiepf.com.ua/ IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash 293eea39c598837c0975e938591bfaaf 4ec639032f1a2d980c1292d1be639c82023ae88a 591ae0cef364c9820e424f378ad4459929b9576486234a7bd1bd24d7ce0c9e6b Loading...

	znuiepf.com.ua/	142 B	2023-03-07	2023-03-07
Pretty URL znuiepf.com.ua/ IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash 7212f6815406b9f23371f19af4f2b32d ff8e4d2b36f792a905e118f3aa086f306e3b536a 0b2495d400e39b18f30fcfb4f5a95b1174aca0dd54b32783b402e6dc1accea27 Loading...

	znuiepf.com.ua/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206	3.5 kB	2023-03-07	2024-04-25
Pretty URL znuiepf.com.ua/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2024-04-25 20:11:40 Times Seen23 Hash 2209c6917ac26906d8f1269a62fe41e7 fb60ce789d7c439d85e5be0aca0842358e7a650c e913b48388a5b5c5cf0c2bc55f9afb576053a80ac4aa7d9efbfa53d5b977344d Loading...

	znuiepf.com.ua/wp-includes/js/wp-embed.min.js?ver=5.7.7	1.4 kB	2023-03-07	2024-04-26
Pretty URL znuiepf.com.ua/wp-includes/js/wp-embed.min.js?ver=5.7.7 IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-26 10:10:59 Times Seen6878 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	niwooghu.com/400/5330192	84 kB	2023-03-07	2023-03-07
Pretty URL niwooghu.com/400/5330192 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash 62ebf13a1936adf9aec6bce615de3607 7ded8a7d55edc11f3474195905876af26ba894df 2f7c9dc8e10e270b941b8feacdd363499edb3ce0c6357a4c8b0b72af1e3855ed Loading...

	znuiepf.com.ua/	176 B	2023-03-07	2023-03-07
Pretty URL znuiepf.com.ua/ IP 142.132.131.203 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2023-03-07 12:09:01 Times Seen1 Hash c1dc3fd71ef8ec34eda109d94c75b949 9514283ef03a3b77c8097638d58d6b992d0fcff8 2ffb8d63c99d598a46f5c848a5f6287a5c048a19ed21400bb195136ba9d4ff3c Loading...

HTTP Transactions (72)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 08:41:42 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 22HxEvjrP4Srl0-mkDSJ6uneAs678lw5Ii2UH9gsXJHyusD_mWBCkQ==
Age: 2651

znuiepf.com.ua/

142.132.131.203

200 OK

44 kB

URL HTTP/1.1
znuiepf.com.ua/
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Size
44 kB (43856 bytes)
Hash
4bf43785564f8a0abe943a8911197bf7
39cc09e9f54a16db6b8589483fc7d7fc965ebf49
9de9ea4121f2abee1879714713f986ad26645a293bc48f896d8118ce6cad1d13

HTTP Headers

GET / HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Link: <https://znuiepf.com.ua/index.php?rest_route=/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6758
Expires: Fri, 02 Sep 2022 11:18:31 GMT
Date: Fri, 02 Sep 2022 09:25:53 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tiOEyabxWB-TSPWlVDtRPEGrsxw4-XLiD0QfdnLfv28rPdc5AVm2kg==
age: 29436
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%2C400italic%2C300%2C100%2C700%7CMerriweather+Sans%3A400%2C700&ver=5.7.7

216.58.211.10

200 OK

962 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%2C400italic%2C300%2C100%2C700%7CMerriweather+Sans%3A400%2C700&ver=5.7.7
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
962 B (962 bytes)
Hash
9ee83cb33869cf645e5362fa9efca840
6be80ef9db2b429b80672c85dba008522c12a7b0
3f173ea3635422562a9719824c0035ef936d3d5a9e6a35f20073526877b28b6a

HTTP Headers

GET /css?family=Open+Sans%3A600%2C400%2C400italic%2C300%2C100%2C700%7CMerriweather+Sans%3A400%2C700&ver=5.7.7 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 02 Sep 2022 09:25:53 GMT
Date: Fri, 02 Sep 2022 09:25:53 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

znuiepf.com.ua/wp-includes/css/dist/block-library/style.min.css?ver=5.7.7

142.132.131.203

200 OK

58 kB

URL HTTP/1.1
znuiepf.com.ua/wp-includes/css/dist/block-library/style.min.css?ver=5.7.7
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (29677)
Size
58 kB (58171 bytes)
Hash
b5d1e2c87b60ce71c3fd90ca27073250
b65e3890ef1565f98971b344b4c85866a5f33860
2cd9de3dd26246204749cff259bc34e8e6a47ae5d6e4528b9b28c75d68d50cde

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.7.7 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 05:16:38 GMT
Accept-Ranges: bytes
Content-Length: 58171
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

znuiepf.com.ua/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.1

142.132.131.203

200 OK

2.7 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.1
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.1 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 18 Oct 2021 12:25:07 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Content-Type: text/css

znuiepf.com.ua/wp-content/uploads/siteorigin-widgets/sow-image-default-d6014b76747a.css?ver=5.7.7

142.132.131.203

200 OK

550 B

URL HTTP/1.1
znuiepf.com.ua/wp-content/uploads/siteorigin-widgets/sow-image-default-d6014b76747a.css?ver=5.7.7
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
550 B (550 bytes)
Hash
7ea8246d6e1cc924f500731ab1f09edb
75517de0ef3eec1739b27a06ddd375f0ac80946b
ef1ea77c95d614496735fc9e17e96d45cd15fe4e142dc1686afcd25d1cde0888

HTTP Headers

GET /wp-content/uploads/siteorigin-widgets/sow-image-default-d6014b76747a.css?ver=5.7.7 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Sep 2022 09:07:40 GMT
Accept-Ranges: bytes
Content-Length: 550
Keep-Alive: timeout=5, max=100
Content-Type: text/css

znuiepf.com.ua/wp-content/plugins/so-widgets-bundle/widgets/button/css/style.css?ver=1.29.1

142.132.131.203

200 OK

1.4 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/plugins/so-widgets-bundle/widgets/button/css/style.css?ver=1.29.1
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (1420), with no line terminators
Size
1.4 kB (1420 bytes)
Hash
6190df10015375507d556b37ff0ffbee
4cae97c1292bb118230a0de622f976ccbcc6c408
1f21683f671ac3f7cd50a0ec2bb7ae3a8a5b0f857d92b2581ecbd7781b3913d3

HTTP Headers

GET /wp-content/plugins/so-widgets-bundle/widgets/button/css/style.css?ver=1.29.1 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Feb 2022 21:14:32 GMT
Accept-Ranges: bytes
Content-Length: 1420
Keep-Alive: timeout=5, max=100
Content-Type: text/css

znuiepf.com.ua/wp-content/uploads/siteorigin-widgets/sow-button-atom-b4f6b6b19f96.css?ver=5.7.7

142.132.131.203

200 OK

2.2 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/uploads/siteorigin-widgets/sow-button-atom-b4f6b6b19f96.css?ver=5.7.7
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
2.2 kB (2168 bytes)
Hash
c28ae016bb206efd4365e27055a1bded
8250e76a5bec27ef60d8a60610bbf46dd55b2d83
61b1d9b145083b17fd01a6e6baa44cb76e36d7178eb05de9856abbcc0bd2e187

HTTP Headers

GET /wp-content/uploads/siteorigin-widgets/sow-button-atom-b4f6b6b19f96.css?ver=5.7.7 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Sep 2022 09:07:40 GMT
Accept-Ranges: bytes
Content-Length: 2168
Keep-Alive: timeout=5, max=100
Content-Type: text/css

znuiepf.com.ua/wp-content/plugins/wp-visual-sitemap/css/wpvs-front-end.css?ver=5.7.7

142.132.131.203

200 OK

2.6 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/plugins/wp-visual-sitemap/css/wpvs-front-end.css?ver=5.7.7
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
2.6 kB (2562 bytes)
Hash
c58fc18a9ddcb69096924432a834a4fa
a17a6cdbe458f5fddf3f3dd066267ce24011c382
acb88eead057558a6279482e5d5d8ad9851887a8a25f0ae0c1e2938061a29445

HTTP Headers

GET /wp-content/plugins/wp-visual-sitemap/css/wpvs-front-end.css?ver=5.7.7 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 15 Nov 2021 14:51:38 GMT
Accept-Ranges: bytes
Content-Length: 2562
Keep-Alive: timeout=5, max=100
Content-Type: text/css

znuiepf.com.ua/wp-content/plugins/wp-visual-sitemap/fontawesome/css/font-awesome.min.css?ver=5.7.7

142.132.131.203

200 OK

31 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/plugins/wp-visual-sitemap/fontawesome/css/font-awesome.min.css?ver=5.7.7
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (30837)
Size
31 kB (30999 bytes)
Hash
008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d

HTTP Headers

GET /wp-content/plugins/wp-visual-sitemap/fontawesome/css/font-awesome.min.css?ver=5.7.7 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 14:51:38 GMT
Accept-Ranges: bytes
Content-Length: 30999
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

znuiepf.com.ua/wp-content/themes/education-hub/css/blocks.css?ver=20201208

142.132.131.203

200 OK

3.4 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/css/blocks.css?ver=20201208
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
3.4 kB (3424 bytes)
Hash
16fe7e6bc5e69196035d9a04fbb8992e
83b097a8f7a44283bc5ae0f5de4f414863892965
26e2b8b09625fa13a419b546c1d045254b7ebf4973a7ce7a46af239fa9135d7e

HTTP Headers

GET /wp-content/themes/education-hub/css/blocks.css?ver=20201208 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 07 Jun 2021 14:45:58 GMT
Accept-Ranges: bytes
Content-Length: 3424
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

znuiepf.com.ua/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

142.132.131.203

200 OK

11 kB

URL HTTP/1.1
znuiepf.com.ua/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 05:16:33 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0

142.132.131.203

200 OK

31 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 07 Jun 2021 14:45:58 GMT
Accept-Ranges: bytes
Content-Length: 31000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

znuiepf.com.ua/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.1

142.132.131.203

200 OK

12 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.1
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text, with very long lines (11862), with no line terminators
Size
12 kB (11862 bytes)
Hash
862c82d8373e4d69aa5af6c994389bda
042bb60eee9e7dbffcbd43d529517e562f97f455
d0ba7e2275cddbdf3d2473a60565d950efb8474ba7bda393cc64f56ff39d85ce

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.1 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 18 Oct 2021 12:25:07 GMT
Accept-Ranges: bytes
Content-Length: 11862
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115

142.132.131.203

200 OK

557 B

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (557), with no line terminators
Size
557 B (557 bytes)
Hash
dea2d1887d3a260af2791c5e97b8ba43
a13dc5c638242f2117cdde2121bbaed9fd538566
818266fe4b7bbf0fe187b6190933c99af05829f70c2d6023acab03f8af5a59b0

HTTP Headers

GET /wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 07 Jun 2021 14:45:58 GMT
Accept-Ranges: bytes
Content-Length: 557
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4eeca8f2ba4b56d6bdcadd130d503c72
1322ff3721747e8dd22c4623af8fceee6cea92fe
b6f1f9cf1ee92eea388c75608f084a176ce2db7aaf24a435c085517ef10be5a4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6F1F9CF1EE92EEA388C75608F084A176CE2DB7AAF24A435C085517EF10BE5A4"
Last-Modified: Wed, 31 Aug 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2757
Expires: Fri, 02 Sep 2022 10:11:50 GMT
Date: Fri, 02 Sep 2022 09:25:53 GMT
Connection: keep-alive

znuiepf.com.ua/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6

142.132.131.203

200 OK

23 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (10280)
Size
23 kB (22940 bytes)
Hash
b9bef20cec2d668923eb248733b3955e
8bbbca8502749ad9d770717c8dc39cf2892ea730
87a1a7e65f6ceed57d27b07cac22836a7682617932fc9d4376887b0ae1754a35

HTTP Headers

GET /wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 07 Jun 2021 14:45:58 GMT
Accept-Ranges: bytes
Content-Length: 22940
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-content/themes/education-hub/style.css?ver=2.3

142.132.131.203

200 OK

89 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/style.css?ver=2.3
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (757)
Size
89 kB (89347 bytes)
Hash
94021fa478f684c5ea5727830817f426
9bd54a03a179d475f988e2054dd023ed8cfc584a
79400994308ed04e9ce510ee3b86bff01fb5a8335bdf894c9f5cb3dbdd23cffc

HTTP Headers

GET /wp-content/themes/education-hub/style.css?ver=2.3 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 09 Aug 2021 20:19:23 GMT
Accept-Ranges: bytes
Content-Length: 89347
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

znuiepf.com.ua/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4

142.132.131.203

200 OK

99 kB

URL HTTP/1.1
znuiepf.com.ua/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Size
99 kB (99310 bytes)
Hash
5090bae2c114802440412e301bdf5174
3850afd52816ee686eccd881df06764b426cd86a
d36e5d7328268d21c6941039a7b6a15c7ed7414f60dbee72d2231d11ac9bdaf3

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 05:16:34 GMT
Accept-Ranges: bytes
Content-Length: 99310
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-includes/js/jquery/jquery.min.js?ver=3.5.1

142.132.131.203

200 OK

90 kB

URL HTTP/1.1
znuiepf.com.ua/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (65451)
Size
90 kB (89496 bytes)
Hash
b6f7093369a0e8b83703914ce731b13c
d1889f5c173c2a4b20288f1f84758599afd346ef
60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 05:16:33 GMT
Accept-Ranges: bytes
Content-Length: 89496
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-content/themes/education-hub/js/custom.min.js?ver=1.0

142.132.131.203

200 OK

632 B

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/js/custom.min.js?ver=1.0
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (631)
Size
632 B (632 bytes)
Hash
67978677162dcee792f82e25f1ff8097
719e995d1a8c57aa66799b973e1215153422a31f
6de3bc6e513052895ca2d762688c8d1769ae0702fcb738879e9d2ea02806bb02

HTTP Headers

GET /wp-content/themes/education-hub/js/custom.min.js?ver=1.0 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 07 Jun 2021 14:45:58 GMT
Accept-Ranges: bytes
Content-Length: 632
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a994c7462d22d617ba8e035115120332
fcb6afd66c48e9fecdf1aebbdaf9fdb156fb69f3
b87f7507b340c4e57c92388852b7b84dc1ba4a9a4ca704d244cc8b6464dda02e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B87F7507B340C4E57C92388852B7B84DC1BA4A9A4CA704D244CC8B6464DDA02E"
Last-Modified: Wed, 31 Aug 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12338
Expires: Fri, 02 Sep 2022 12:51:31 GMT
Date: Fri, 02 Sep 2022 09:25:53 GMT
Connection: keep-alive

znuiepf.com.ua/wp-includes/js/wp-embed.min.js?ver=5.7.7

142.132.131.203

200 OK

1.4 kB

URL HTTP/1.1
znuiepf.com.ua/wp-includes/js/wp-embed.min.js?ver=5.7.7
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (1391)
Size
1.4 kB (1426 bytes)
Hash
905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.7.7 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 05:12:09 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7

142.132.131.203

200 OK

14 kB

URL HTTP/1.1
znuiepf.com.ua/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (11272)
Size
14 kB (14229 bytes)
Hash
eaa8641bcda2371f4024a71fbb67de3b
0e46c39d3821683c856605a82254115f9a6a7792
0c5f584d1ea2c3313dc8c55824c2a572d3cf2eae87c5ca62a58e598aec9ddb5c

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.7 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 05:16:33 GMT
Accept-Ranges: bytes
Content-Length: 14229
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206

142.132.131.203

200 OK

3.5 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (3522)
Size
3.5 kB (3523 bytes)
Hash
2209c6917ac26906d8f1269a62fe41e7
fb60ce789d7c439d85e5be0aca0842358e7a650c
e913b48388a5b5c5cf0c2bc55f9afb576053a80ac4aa7d9efbfa53d5b977344d

HTTP Headers

GET /wp-content/themes/education-hub/js/navigation.min.js?ver=20120206 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:53 GMT
Server: Apache
Last-Modified: Mon, 07 Jun 2021 14:45:58 GMT
Accept-Ranges: bytes
Content-Length: 3523
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

znuiepf.com.ua/wp-includes/images/rss.png

142.132.131.203

200 OK

608 B

URL HTTP/1.1
znuiepf.com.ua/wp-includes/images/rss.png
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
608 B (608 bytes)
Hash
a5b05bbf28f294b02efd942a4e5ab806
fd8211de3485d2ec75c242c6faa32a62e504f135
0c6daa646e0a867e5f721b5017c98cfd2c82c26c60b614531ddae8a5d9986be8

HTTP Headers

GET /wp-includes/images/rss.png HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:54 GMT
Server: Apache
Last-Modified: Wed, 07 Nov 2012 20:19:10 GMT
Accept-Ranges: bytes
Content-Length: 608
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVQewJER.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVQewJER.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12248, version 1.0\012- data
Size
12 kB (12248 bytes)
Hash
e2ba25c1f2f512c84e06d1fa05d21991
7bc000ac9fc581519fbf4588d26ecbcf00d3f5bd
aee321b108eeeac25bcfe9ee9f53f0a62c57b1e14a9da05b0974a42454bf22a1

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVQewJER.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 12248
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 30 Aug 2022 04:11:31 GMT
Expires: Wed, 30 Aug 2023 04:11:31 GMT
Cache-Control: public, max-age=31536000
Age: 278063
Last-Modified: Mon, 15 Aug 2022 18:13:23 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2

142.250.74.163

200 OK

26 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Size
26 kB (26240 bytes)
Hash
4a90976686fcbd8296c7d7fccc04c273
bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26240
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 29 Aug 2022 23:29:27 GMT
Expires: Tue, 29 Aug 2023 23:29:27 GMT
Cache-Control: public, max-age=31536000
Age: 294987
Last-Modified: Mon, 15 Aug 2022 18:14:37 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

142.250.74.163

200 OK

18 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Size
18 kB (17820 bytes)
Hash
3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17820
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 30 Aug 2022 01:28:55 GMT
Expires: Wed, 30 Aug 2023 01:28:55 GMT
Cache-Control: public, max-age=31536000
Age: 287819
Last-Modified: Mon, 15 Aug 2022 18:13:12 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 29 Aug 2022 21:39:19 GMT
Expires: Tue, 29 Aug 2023 21:39:19 GMT
Cache-Control: public, max-age=31536000
Age: 301595
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2

oaphoace.net/401/5330193

139.45.197.239

200 OK

67 kB

URL HTTP/2
oaphoace.net/401/5330193
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
data
Size
67 kB (66910 bytes)
Hash
11bf7e725e95c02481ceb835cac87308
f373fba8ed59917f5dd6d30c108ebf5e005f44f9
f6cfbe2a02e4c6f9b34dbbf659d5c491e1cad8e1c96a18fb0240f74e5d3115d6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /401/5330193 HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:54 GMT
content-type: application/javascript
x-trace-id: 02b19c03d23dd40b13e24aaaa511b5f5
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=0a81559bfc14446c9e88dbf84d597839; expires=Sat, 02 Sep 2023 09:25:54 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

znuiepf.com.ua/wp-content/themes/education-hub/third-party/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

142.132.131.203

200 OK

77 kB

URL HTTP/1.1
znuiepf.com.ua/wp-content/themes/education-hub/third-party/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/themes/education-hub/third-party/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://znuiepf.com.ua/wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:54 GMT
Server: Apache
Last-Modified: Mon, 07 Jun 2021 14:45:58 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

static.getbutton.io/widget-send-button/js/init.js

176.9.188.20

302 Moved Temporarily

145 B

URL HTTP/1.1
static.getbutton.io/widget-send-button/js/init.js
IP
176.9.188.20:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
145 B (145 bytes)
Hash
0e0a408f3009ae4498e7f3ffc9c5fa7b
113078a9c13645b225d88d5e306709f8994ea817
e3a16c76764dacf8ea25637976a03595564530a9fce185c2145f7c1903f2707b

HTTP Headers

GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.23.1
Date: Fri, 02 Sep 2022 09:25:54 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js

niwooghu.com/400/5330192

139.45.197.237

200 OK

177 kB

URL HTTP/2
niwooghu.com/400/5330192
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
data
Size
177 kB (177080 bytes)
Hash
5f22fb284f1b306ab7f4edc8d64b0db3
8100291da3279f8c9962b07f8c5599a762ea4012
04139af8717f866d6d9ac297e4299467e5cec6f98717d1a548f2b55cf7d61e32

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /400/5330192 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:54 GMT
content-type: application/javascript
x-trace-id: 80a78f766c597727e5fb23c48da29460
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=411faf52f84d49709fd8b57eb0603bdc; expires=Sat, 02 Sep 2023 09:25:54 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

znuiepf.com.ua/wp-content/uploads/2022/02/uRGfLsw_400x400.jpeg

142.132.131.203

200 OK

18 kB

URL HTTP/2
znuiepf.com.ua/wp-content/uploads/2022/02/uRGfLsw_400x400.jpeg
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3\012- data
Size
18 kB (18185 bytes)
Hash
e0091d9a2a89ef24bf0d94bece4969df
60ba6ca8c989f5819da70890c7c1352cf28ddea7
e7982039f944b48918f087ed0207d356e49059a8c76638678fc9481bff425183

HTTP Headers

GET /wp-content/uploads/2022/02/uRGfLsw_400x400.jpeg HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 15 Feb 2022 22:01:01 GMT
accept-ranges: bytes
content-length: 18185
content-type: image/jpeg
date: Fri, 02 Sep 2022 09:25:54 GMT
server: Apache
X-Firefox-Spdy: h2

znuiepf.com.ua/wp-content/uploads/2022/06/400_0_1643040137-8937.jpg

142.132.131.203

200 OK

18 kB

URL HTTP/2
znuiepf.com.ua/wp-content/uploads/2022/06/400_0_1643040137-8937.jpg
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x267, components 3\012- data
Size
18 kB (18010 bytes)
Hash
590401ef63c40b3334c15328503b32d4
4443a9d4bc4da5d915030793e0c2884500bedffb
4293bafff2f332f7cd6ac9ccc9c5bf64ae621b831884829c1f6751d94bdab006

HTTP Headers

GET /wp-content/uploads/2022/06/400_0_1643040137-8937.jpg HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 08:11:36 GMT
accept-ranges: bytes
content-length: 18010
content-type: image/jpeg
date: Fri, 02 Sep 2022 09:25:54 GMT
server: Apache
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 08:38:16 GMT
Expires: Fri, 02 Sep 2022 09:15:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WanCojZ1s-pvyqtyiJAVhCKo2ypzyHsdwmdZAZxYlFir50wFsT2_Eg==
Age: 2858

znuiepf.com.ua/wp-content/uploads/2022/06/5%D0%90-1536x1152.jpg

142.132.131.203

200 OK

163 kB

URL HTTP/2
znuiepf.com.ua/wp-content/uploads/2022/06/5%D0%90-1536x1152.jpg
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1536x1152, components 3\012- data
Size
163 kB (163193 bytes)
Hash
e8292f9eb826d88a9c6c5bdb927a93c1
f3af6d07a9846f3c6c80fad979d78b8dbf57e13e
b9b2de397e6e7a26f3dccd91de49535372b33f754ab7cf6df4582895d44e49d3

HTTP Headers

GET /wp-content/uploads/2022/06/5%D0%90-1536x1152.jpg HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 27 Jun 2022 17:50:41 GMT
accept-ranges: bytes
content-length: 163193
content-type: image/jpeg
date: Fri, 02 Sep 2022 09:25:54 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5c63be02e8794b20ff7cb35975cc2da2
9e5715ca0b18d889da3ce5af809f4dab626131b7
f34399136be0faf92eb0d517ed27b9983aedd6ac14463dfba7207f7b4d7a8841

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 09:24:03 GMT
Expires: Wed, 07 Sep 2022 09:24:02 GMT
Etag: "9e5715ca0b18d889da3ce5af809f4dab626131b7"
Cache-Control: max-age=431287,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 744533774e95b4f3-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5392
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:25:54 GMT
Last-Modified: Fri, 02 Sep 2022 07:56:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

static.getbutton.io/widget/bundle.js

176.9.188.20

200 OK

94 kB

URL HTTP/1.1
static.getbutton.io/widget/bundle.js
IP
176.9.188.20:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (65475)
Size
94 kB (94164 bytes)
Hash
e71520287bb9126c2b225d2a3b337940
e7cd3e88c04ad3e0e9e089d0e63e657ca2d09665
d8aff402695c89c58cbbc7bbd9b7ee5c791da1692646aea46b08d75866629471

HTTP Headers

GET /widget/bundle.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://znuiepf.com.ua/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.23.1
Date: Fri, 02 Sep 2022 09:25:54 GMT
Content-Type: application/javascript
Last-Modified: Thu, 01 Sep 2022 07:58:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63106611-4a52c"
Expires: Fri, 02 Sep 2022 12:25:54 GMT
Cache-Control: max-age=10800
Access-Control-Allow-Origin: *
Content-Encoding: gzip

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
41ea586f0e66dcd46f50ab3938543b12
d7a3d6a40066652fc85cdaab9e613246b6af4aab
60b133ec87e89ec28689b760f6ce265eee0e935dca93f42543885a05f8b19a79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:25:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 18:25:21 GMT
Expires: Thu, 08 Sep 2022 18:25:20 GMT
Etag: "d7a3d6a40066652fc85cdaab9e613246b6af4aab"
Cache-Control: max-age=550165,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 744533781fccb4f3-OSL

znuiepf.com.ua/favicon.ico

142.132.131.203

404 Not Found

315 B

URL HTTP/1.1
znuiepf.com.ua/favicon.ico
IP
142.132.131.203:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: znuiepf.com.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://znuiepf.com.ua/

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 09:25:54 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

my.rtmark.net/gid.js

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
a9d6730d5826a31afcd7630d57c5e740
f148cbb1895dad9d52f55e39cd8bad39aea466c3
ce4c982ee07055cf67870e7ad4249f290e58cdfd1dd90022a11a5a66a8cfc0b8

HTTP Headers

GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:54 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://znuiepf.com.ua
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=111092f4de414b4eb61d74e7b22cc79a; expires=Sat, 02 Sep 2023 09:25:54 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

oaphoace.net/500/5330193?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.239

200 OK

0 B

URL HTTP/2
oaphoace.net/500/5330193?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

OPTIONS /500/5330193?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://znuiepf.com.ua/
Origin: http://znuiepf.com.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:55 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://znuiepf.com.ua
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.39.57.61

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.57.61:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tgVZNkKrRupS6aI2RJ4NYQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f94KCqwUAfw0o32SMkARNhGeux8=

niwooghu.com/500/5330192?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.237

200 OK

0 B

URL HTTP/2
niwooghu.com/500/5330192?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

OPTIONS /500/5330192?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://znuiepf.com.ua/
Origin: http://znuiepf.com.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:55 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://znuiepf.com.ua
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png

104.22.33.172

200 OK

66 kB

URL HTTP/2
offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png
IP
104.22.33.172:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
66 kB (66121 bytes)
Hash
3d08aacb36c7474e0d13b60f8f4adc14
e4af2de372b5e3a2211579a5973ef7ed160e7be4
54b0569cf052e12dd373e86031009d0a54a893275a21c2ef863277a9a978ab1c

HTTP Headers

GET /www/images/3d08aacb36c7474e0d13b60f8f4adc14.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Sep 2022 09:25:55 GMT
content-type: image/png
content-length: 66121
last-modified: Mon, 12 Oct 2020 05:50:58 GMT
etag: "5f83eec2-10249"
expires: Fri, 02 Sep 2022 12:13:12 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 76363
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7445337b7ef195f4-ARN
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3064
Expires: Fri, 02 Sep 2022 10:17:00 GMT
Date: Fri, 02 Sep 2022 09:25:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3064
Expires: Fri, 02 Sep 2022 10:17:00 GMT
Date: Fri, 02 Sep 2022 09:25:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3064
Expires: Fri, 02 Sep 2022 10:17:00 GMT
Date: Fri, 02 Sep 2022 09:25:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3064
Expires: Fri, 02 Sep 2022 10:17:00 GMT
Date: Fri, 02 Sep 2022 09:25:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3064
Expires: Fri, 02 Sep 2022 10:17:00 GMT
Date: Fri, 02 Sep 2022 09:25:56 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10435 bytes)
Hash
955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 42510
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9252 bytes)
Hash
5ba50b2fd1814c5ffc95aef40c69ce8c
cbb4546228115cccc122b16209e70171bef5c1f2
de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 41086
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

17 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
17 kB (16818 bytes)
Hash
12756903aaa74164feb5f8525398ca36
9fef9b071daea6793cbbdfe391254ac4326b1aa2
6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69fDjN-ZeYA8RVO_WGTY1KQHZ1t3PNdWIwq3ax1e1wKmuPODyGCMcQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 14:46:29 GMT
age: 67167
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6196 bytes)
Hash
5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 41410
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9200 bytes)
Hash
37fee36d8fd409ea63dd4a26dee39510
6b00992edf40eb957e6900d592ebcb0c5e611944
a36b1bf6a3bedcb0d842b29538ce966ebb37e5c371d5dca74ee1634f29799065

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9200
x-amzn-requestid: 5a10ba85-af61-4f8d-a293-38d8c028fb9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTWaEzIIAMF_zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c65c2-17f7c0552179175c3400a90d;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:07:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Bj242vaxQJa4JwOdMcIsAEpSVR4fZP8dfg4zvGkPnFnqHEu2jGOH9A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:56:35 GMT
etag: "6b00992edf40eb957e6900d592ebcb0c5e611944"
content-type: image/jpeg
age: 37761
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.6 kB (2625 bytes)
Hash
225b8d6b006bc34721fd5f986b3fb6f6
7b7e20e3036e32798cbcc251dacc89ac93085e4d
87b2404ad60df3c4421c4b1fae2d2c4c8391aec7ce809da223642fc0375044cd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2625
x-amzn-requestid: 45e03380-927b-4bc2-b53f-af2df7d8380c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfHq5IAMFQxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-5aa105d34993ee034a18138e;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NWdFB0r0k0sux6_q8ZoIVZP5cda-rGdiXXFMMVwkQpMe6hL6eG72LQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:38:30 GMT
age: 42446
etag: "7b7e20e3036e32798cbcc251dacc89ac93085e4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

oaphoace.net/impression/5ZpenAUyRQ-uPrUwH0vhoul-CxIv2FiO-6KaSNqF8DPTRO-eCDADe-K_t0uUkHXKmW3dAk6ZyEet2rhi2oww5lcMrM6F-ZKeCL6DBZobj_v6X8ZbVTpGEx2k574Cn67Fl6Ai8zJzzlIv3bGaWHlm4IVdrB97fuP4hS8IjJrD9V6M_oMZIpDQ-yy-kbBwoC3Rbg0D7iskWXKdZDWaYD-GcGb9FEkq_joFuXlz9fZJuKJQkFqTW_2GMzFl9rLUZlPW0hr7mU_qtyxeruaztu_N4J8EVao_OjLQWl-l7wKuamtj7GZeSNk7lymD_2Tcll3-Eitrn8CmgoPTX-FzSwGhakuHAHJ0hh9cWzDfdaji91E_OErIjnZIvFp_4DeZlE0WsZ84A0ISyW8pw1ePb7QJeUJq4QZ7L6DVUFnEGxAwqaxjWYj5oFA4zJmI6gkggmsKkFFLTpkeWSfhNiqWWw2X5Dx3D5bWrg6rjf0k5JSU6uLYyFV8KxfRHLXDO28QwEU-bjQZnB17sPHhAMwYJP1woM6KPKAJsdVnPLNhqT4Pi7t_zOae8h8fMsV1z5v9XyZhVXWYQXaXY0F-1fcew1aKEBoH5ULo4aEs?_z=5330193&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.239

200 OK

43 B

URL HTTP/2
oaphoace.net/impression/5ZpenAUyRQ-uPrUwH0vhoul-CxIv2FiO-6KaSNqF8DPTRO-eCDADe-K_t0uUkHXKmW3dAk6ZyEet2rhi2oww5lcMrM6F-ZKeCL6DBZobj_v6X8ZbVTpGEx2k574Cn67Fl6Ai8zJzzlIv3bGaWHlm4IVdrB97fuP4hS8IjJrD9V6M_oMZIpDQ-yy-kbBwoC3Rbg0D7iskWXKdZDWaYD-GcGb9FEkq_joFuXlz9fZJuKJQkFqTW_2GMzFl9rLUZlPW0hr7mU_qtyxeruaztu_N4J8EVao_OjLQWl-l7wKuamtj7GZeSNk7lymD_2Tcll3-Eitrn8CmgoPTX-FzSwGhakuHAHJ0hh9cWzDfdaji91E_OErIjnZIvFp_4DeZlE0WsZ84A0ISyW8pw1ePb7QJeUJq4QZ7L6DVUFnEGxAwqaxjWYj5oFA4zJmI6gkggmsKkFFLTpkeWSfhNiqWWw2X5Dx3D5bWrg6rjf0k5JSU6uLYyFV8KxfRHLXDO28QwEU-bjQZnB17sPHhAMwYJP1woM6KPKAJsdVnPLNhqT4Pi7t_zOae8h8fMsV1z5v9XyZhVXWYQXaXY0F-1fcew1aKEBoH5ULo4aEs?_z=5330193&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /impression/5ZpenAUyRQ-uPrUwH0vhoul-CxIv2FiO-6KaSNqF8DPTRO-eCDADe-K_t0uUkHXKmW3dAk6ZyEet2rhi2oww5lcMrM6F-ZKeCL6DBZobj_v6X8ZbVTpGEx2k574Cn67Fl6Ai8zJzzlIv3bGaWHlm4IVdrB97fuP4hS8IjJrD9V6M_oMZIpDQ-yy-kbBwoC3Rbg0D7iskWXKdZDWaYD-GcGb9FEkq_joFuXlz9fZJuKJQkFqTW_2GMzFl9rLUZlPW0hr7mU_qtyxeruaztu_N4J8EVao_OjLQWl-l7wKuamtj7GZeSNk7lymD_2Tcll3-Eitrn8CmgoPTX-FzSwGhakuHAHJ0hh9cWzDfdaji91E_OErIjnZIvFp_4DeZlE0WsZ84A0ISyW8pw1ePb7QJeUJq4QZ7L6DVUFnEGxAwqaxjWYj5oFA4zJmI6gkggmsKkFFLTpkeWSfhNiqWWw2X5Dx3D5bWrg6rjf0k5JSU6uLYyFV8KxfRHLXDO28QwEU-bjQZnB17sPHhAMwYJP1woM6KPKAJsdVnPLNhqT4Pi7t_zOae8h8fMsV1z5v9XyZhVXWYQXaXY0F-1fcew1aKEBoH5ULo4aEs?_z=5330193&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Cookie: OAID=111092f4de414b4eb61d74e7b22cc79a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:59 GMT
content-type: image/gif
content-length: 43
x-trace-id: febe813b56bf9c59edd9f2794e7bf689
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700

216.58.211.10

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1232 bytes)
Hash
59e3f979563f683b75845619c11c56d4
2dbc48666c4b5aad2a8f91841857c31ea669d4c9
680d34eebd734dd1d9d5f20591e8648fc8230c2600a593000aa82772103d0764

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 09:25:59 GMT
date: Fri, 02 Sep 2022 09:25:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 136311
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 136311
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

139.45.197.239

200 OK

0 B

URL HTTP/2
oaphoace.net/500/5330193?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /500/5330193?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Cookie: OAID=0a81559bfc14446c9e88dbf84d597839
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:55 GMT
content-type: application/javascript
x-trace-id: 2bc5cd1f7659ab27b013eecb78be69c4
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: http://znuiepf.com.ua
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=111092f4de414b4eb61d74e7b22cc79a; expires=Sat, 02 Sep 2023 09:25:55 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

139.45.197.237

200 OK

0 B

URL HTTP/2
niwooghu.com/500/5330192?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /500/5330192?excludes=&oaid=111092f4de414b4eb61d74e7b22cc79a&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&pl=http%3A%2F%2Fznuiepf.com.ua%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://znuiepf.com.ua
Connection: keep-alive
Referer: http://znuiepf.com.ua/
Cookie: OAID=411faf52f84d49709fd8b57eb0603bdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:25:55 GMT
content-type: application/javascript
x-trace-id: 30fdeb03b474d9dcef3dd90091abc428
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://znuiepf.com.ua
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=111092f4de414b4eb61d74e7b22cc79a; expires=Sat, 02 Sep 2023 09:25:55 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations