Overview

URL darkskyhack.7m.pl/package.exe
IP149.202.75.212
ASNOVH SAS
Location France
Report completed2022-06-23 18:06:07 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-06-23 2 darkskyhack.7m.pl/package.exe Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (14)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.35
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-06-23 12:06:14 UTC 93.184.220.29
[Mnemonic Passive DNS] ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-06-23 14:17:25 UTC 104.18.32.68
[Mnemonic Passive DNS] spolecznosci.mgr.consensu.org (1) 321367 No data No data 164.132.7.109
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-06-23 04:53:43 UTC 54.230.111.7
[Mnemonic Passive DNS] ocsp.pki.goog (2) 175 2017-06-14 07:23:31 UTC 2022-06-23 11:59:42 UTC 142.250.74.3
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-06-23 14:13:18 UTC 34.120.237.76
[Mnemonic Passive DNS] darkskyhack.7m.pl (1) 0 No data No data 149.202.75.212 Domain (7m.pl) ranked at: 291876
[Mnemonic Passive DNS] r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-06-23 04:53:45 UTC 23.36.76.226
[Mnemonic Passive DNS] a.spolecznosci.net (1) 148930 No data No data 164.132.7.102
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-06-23 04:55:40 UTC 52.89.136.145
[Mnemonic Passive DNS] ads.pubmatic.com (1) 469 2012-05-21 03:56:35 UTC 2022-06-23 12:14:40 UTC 23.38.200.201
[Mnemonic Passive DNS] 7m.pl (9) 291876 No data No data 95.217.209.65


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 149.202.75.212

Date UQ / IDS / BL URL IP
2022-07-05 16:52:59 +0000
0 - 0 - 1 darkskyhack.7m.pl/package.exe 149.202.75.212
2022-07-04 16:27:43 +0000
0 - 0 - 1 darkskyhack.7m.pl/package.exe 149.202.75.212
2022-07-03 16:31:29 +0000
0 - 0 - 1 darkskyhack.7m.pl/package.exe 149.202.75.212
2022-07-03 04:44:49 +0000
0 - 0 - 0 https://www.cwbypass.7m.pl/ 149.202.75.212
2022-07-02 16:26:17 +0000
0 - 0 - 1 darkskyhack.7m.pl/package.exe 149.202.75.212
2022-07-02 16:23:54 +0000
0 - 0 - 0 weffwddddd.7m.pl/cmd/bot.exe 149.202.75.212
2022-07-01 16:27:22 +0000
0 - 0 - 1 darkskyhack.7m.pl/package.exe 149.202.75.212
2022-07-01 16:24:43 +0000
0 - 0 - 0 weffwddddd.7m.pl/cmd/bot.exe 149.202.75.212
2022-06-30 16:38:32 +0000
0 - 0 - 0 weffwddddd.7m.pl/cmd/bot.exe 149.202.75.212
2022-06-30 16:27:42 +0000
0 - 0 - 1 darkskyhack.7m.pl/package.exe 149.202.75.212

Last 10 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-07-06 04:35:36 +0000
0 - 0 - 44 paulgay.com/ 188.165.53.185
2022-07-06 04:32:47 +0000
0 - 0 - 1 susozinea.com/ 135.125.17.71
2022-07-06 04:30:41 +0000
0 - 0 - 1 www.tiroir-secret.com/jp/visa-inc/ 213.186.33.17
2022-07-06 04:26:19 +0000
0 - 0 - 25 whatsappnotif.com/ 51.255.83.82
2022-07-06 04:22:34 +0000
0 - 0 - 26 helpsysadmin.ga/ 51.222.48.96
2022-07-06 04:22:25 +0000
0 - 0 - 5 four-ways.com/ 94.23.87.17
2022-07-06 03:55:26 +0000
0 - 0 - 2 gruparedwood.pl/ 79.137.68.25
2022-07-06 03:52:57 +0000
0 - 0 - 1 obraslux.es/ 37.59.226.77
2022-07-06 03:16:55 +0000
0 - 0 - 1 wowroms.com/es/roms/mame/download-wow-new-fan (...) 167.114.103.42
2022-07-06 03:14:13 +0000
0 - 0 - 2 raffaeleamato.it/fonts/ajax/ajax/view.php 94.23.64.40

No other reports on domain: 7m.pl



JavaScript

Executed Scripts (9)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (33)


Request Response
                                        
                                            GET /package.exe HTTP/1.1 
Host: darkskyhack.7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         149.202.75.212
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 23 Jun 2022 18:05:52 GMT
Content-Length: 0
Connection: keep-alive
Location: http://7m.pl/404.html


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "22A7AFFA696C3188DD074DEB68A2EC519EA227AC839D0238C9F82660B9E14D6A"
Last-Modified: Tue, 21 Jun 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8588
Expires: Thu, 23 Jun 2022 20:29:00 GMT
Date: Thu, 23 Jun 2022 18:05:52 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 23 Jun 2022 17:43:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: r5sq8mcPLy810jXnnrvSpB_bWfF6jvguLmKu5-GGiVSN7kO7ECHRNw==
Age: 1318


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.7
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Jun 2022 02:10:52 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QC_0cBRpO_DiPuoptX1LWWGxmx38qQCjGDVJVaErG6LUy2oWHpDrsg==
age: 57301
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /404.html HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         95.217.209.65
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 23 Jun 2022 18:05:52 GMT
Server: Apache/2.4.25 (Debian)
Location: https://7m.pl/404.html
Content-Length: 301
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   301
Md5:    4b24bed7e109e3c6fa16a0749b7738d2
Sha1:   41b73e956a697647b8b86410e421189d87e6e931
Sha256: 476b6932f90f6a99aae78b08a1e2a9146720577d93c449f7813a3b9571b5af29
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 23 Jun 2022 18:05:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CFCD7181FB16215B9CE89B0F80879B06CA91636D2192D2B53B75401656F93B3B"
Last-Modified: Wed, 22 Jun 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 24 Jun 2022 00:05:52 GMT
Date: Thu, 23 Jun 2022 18:05:52 GMT
Connection: keep-alive

                                        
                                            GET /404.html HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         95.217.209.65
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 23 Jun 2022 18:05:52 GMT
Server: Apache/2.4.25 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; path=/ lang=en; expires=Thu, 21-Jul-2022 18:05:53 GMT; Max-Age=2419200
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (426)
Size:   2978
Md5:    09bfc56d3d352ba1985d9b6c1e46dbce
Sha1:   70a7487e7571f21aaccfd1f181a0fd7ac7d0e865
Sha256: 41d05e632a9578df9a5ce05c0b427500bb12f11baa59f17529419a912193d544
                                        
                                            GET /style404.css HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/404.html
Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.217.209.65
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 23 Jun 2022 18:05:53 GMT
Server: Apache/2.4.25 (Debian)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Last-Modified: Wed, 06 May 2020 08:09:58 GMT
ETag: "603-5a4f64a4384fa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 614
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   614
Md5:    9420208d3cd1d86421ae3018541a9818
Sha1:   80558c8b02f5b9095d0f41e335ec4cf0679499cb
Sha256: 6119dfb99680e4320d560b56a820bdb23b9d7e8dcdc98e526cc854df2537dd1c
                                        
                                            GET /robot.js HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/404.html
Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.217.209.65
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 23 Jun 2022 18:05:53 GMT
Server: Apache/2.4.25 (Debian)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Last-Modified: Fri, 05 Nov 2021 09:33:41 GMT
ETag: "7340-5d00756b9cf22-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7541
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  C source, Unicode text, UTF-8 text, with very long lines (1673), with CRLF line terminators
Size:   7541
Md5:    68569fe3e1e01b3d03426f0b25d08b63
Sha1:   78a6f65c4132f0491a637acf6e5ee2c00d0e9611
Sha256: c56d08f68f81f988a19aafad6a813491f89a15a00d68955f3907f2ba5f580f07
                                        
                                            GET /gfx/logo.png HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/404.html
Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.217.209.65
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 23 Jun 2022 18:05:53 GMT
Server: Apache/2.4.25 (Debian)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Last-Modified: Wed, 06 May 2020 08:10:21 GMT
ETag: "61e-5a4f64ba1eb69"
Accept-Ranges: bytes
Content-Length: 1566
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 122 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size:   1566
Md5:    ec3231b83dd46320c50b8e84ab62f100
Sha1:   374616cfbc3ab9983e62cff90a98922fddc1341e
Sha256: 206fd455a6c40c2fbde31394c2f64c0b3a120d9075e3ba1ff1f76363175f1fa3
                                        
                                            GET /gfx/logo_footer.png HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/404.html
Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.217.209.65
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 23 Jun 2022 18:05:53 GMT
Server: Apache/2.4.25 (Debian)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Last-Modified: Wed, 06 May 2020 08:10:20 GMT
ETag: "558-5a4f64b971dce"
Accept-Ranges: bytes
Content-Length: 1368
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 88 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size:   1368
Md5:    c35a53ed252ad5cab687ef2621a8e00e
Sha1:   5709c9bb06dcd23be6fa18d4cbfbd23d638d70f2
Sha256: e42f230b756c2956805b22278ac4a8926fd943d74d91a293769f20097b2444a8
                                        
                                            GET /stats.php?name=7m.pl HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/404.html
Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         95.217.209.65
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 23 Jun 2022 18:05:53 GMT
Server: Apache/2.4.25 (Debian)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive

                                        
                                            GET /ads.php?lang=other&name=7m.pl&mobile=0&page_url=https://7m.pl/404.html HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/404.html
Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         95.217.209.65
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 23 Jun 2022 18:05:53 GMT
Server: Apache/2.4.25 (Debian)
Access-Control-Allow-Origin: *
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   35
Md5:    d083b05334e3f566dfcbe3a11df92f72
Sha1:   c1f6e22e029cc95ad08f5b1b074d04e2e5cbfa21
Sha256: 496dcb87f1e49079d781b39094bd001498b578141a3f9c436dd0bdcb49506054
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4177
Cache-Control: 'max-age=158059'
Date: Thu, 23 Jun 2022 18:05:53 GMT
Last-Modified: Thu, 23 Jun 2022 16:56:16 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 23 Jun 2022 18:05:53 GMT
Content-Length: 280
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 14:33:13 GMT
Expires: Thu, 30 Jun 2022 14:33:13 GMT
ETag: 0C8516AECF284C00FEFF8A0FFEE30BE71E5811CA
Cache-Control: max-age=591439,s-maxage=1800,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp14
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 71ff278bbb7eb4e8-OSL

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 23 Jun 2022 17:11:58 GMT
Cache-Control: max-age=3600
Expires: Thu, 23 Jun 2022 17:45:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 82bG3GUTtv6zJtAh7s2fZ3fF62jnA8KTnBSjYMNcAQLnDWBzc3zkGA==
Age: 3236


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 7m.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/404.html
Cookie: PHPSESSID=uh5igpab460a3n934tmgl4c0b0; lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.217.209.65
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Thu, 23 Jun 2022 18:05:54 GMT
Server: Apache/2.4.25 (Debian)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Last-Modified: Wed, 06 May 2020 08:10:10 GMT
ETag: "17d-5a4f64af6d6df"
Accept-Ranges: bytes
Content-Length: 381
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   381
Md5:    50f6c2d9be941b7c01f3265ad161f87c
Sha1:   6d76ee9484335ab4ec82a1d146e25b57fbe6e929
Sha256: 6415f2fbe332628257b22fd2c767e2d022e99937c21d96a95790fae777c20b7e
                                        
                                            GET /geo_eu HTTP/1.1 
Host: a.spolecznosci.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://7m.pl
Connection: keep-alive
Referer: https://7m.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         164.132.7.102
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 23 Jun 2022 18:05:54 GMT
content-type: application/json; charset=utf-8
content-length: 33
access-control-allow-origin: *
cache-control: private, max-age=86400
expires: Fri, 24 Jun 2022 18:05:54 GMT
x-cache: MISS
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   33
Md5:    f6d12b59c69906836a21304b7c30bb9a
Sha1:   8aa99238e8b4cd2362386f57a5e1c1d4cfd693f6
Sha256: d388e17cd680b50b73beb3e1e9a1aed323a6afc8b8d2dfd8b204109c83522006
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8b4ORhfOmSgJywWjNCOfkw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.89.136.145
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aNznOym+xnJCK2UDKMLCDKlOufA=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 23 Jun 2022 18:05:54 GMT
Content-Length: 279
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2022 08:15:07 GMT
Expires: Wed, 29 Jun 2022 08:15:07 GMT
ETag: B71772E36569066E214F610965CAE8EB53749D45
Cache-Control: max-age=482352,s-maxage=1800,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp13
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 71ff278daeefb4e8-OSL

                                        
                                            GET /AdServer/js/pwt/156036/6501/pwt.js HTTP/1.1 
Host: ads.pubmatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://7m.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.201
HTTP/2 200 OK
                                        
last-modified: Fri, 08 Apr 2022 12:45:50 GMT
etag: "18e268b-36277-5dc23f96f7da0"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: text/javascript
content-length: 70394
cache-control: max-age=79506
expires: Fri, 24 Jun 2022 16:11:00 GMT
date: Thu, 23 Jun 2022 18:05:54 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   70394
Md5:    e79d5784c9dcbb78cc3a46eb88a0b1b9
Sha1:   9979d6c8b2f9c479f8a35ec26222ed15b9217872
Sha256: c1d34492ddb0abfd7cb24d834e90474d1f47a6bea4e296f26e92acd767ab0a2a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 23 Jun 2022 18:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v2/vendor-list.json HTTP/1.1 
Host: spolecznosci.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://7m.pl
Connection: keep-alive
Referer: https://7m.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         164.132.7.109
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 23 Jun 2022 18:05:54 GMT
content-type: application/json
last-modified: Fri, 10 Jun 2022 09:16:59 GMT
vary: Accept-Encoding
expires: Fri, 24 Jun 2022 18:05:54 GMT
cache-control: max-age=86400, public
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   65750
Md5:    1d304b87313f49a6d49ffc1e92eb716c
Sha1:   8c03f54a36c069cb4f65688306082f9c6a2346b3
Sha256: 794416fde9b6bf6d3fd3847956956ca444728e0f6aaa29b2d0d60c592a9cec9e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 23 Jun 2022 18:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1394332035FF30FC505CCB0EB81DD131660600CACDD2559D109B725075B69669"
Last-Modified: Tue, 21 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10171
Expires: Thu, 23 Jun 2022 20:55:26 GMT
Date: Thu, 23 Jun 2022 18:05:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1394332035FF30FC505CCB0EB81DD131660600CACDD2559D109B725075B69669"
Last-Modified: Tue, 21 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10171
Expires: Thu, 23 Jun 2022 20:55:26 GMT
Date: Thu, 23 Jun 2022 18:05:55 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa820a46a-765f-44c7-a419-1416079d7858.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 14752
x-amzn-requestid: 3198cf2a-fea9-41f0-985c-404fb3f7b0d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UC6TDFLPIAMF7Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b10a79-3f7fa56b3cf26b5c4092f635;Sampled=0
x-amzn-remapped-date: Tue, 21 Jun 2022 00:02:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: egolKRje-6jaJseK9_atbODoixEI0Ax5pkWlQH55Awj5c2xcNUxMKA==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Jun 2022 01:07:33 GMT
age: 61102
etag: "70511c4ed709ee934897dfb4d67e4dcb162acc29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14752
Md5:    04d57f33c32649ce18f99c9063b7ca02
Sha1:   70511c4ed709ee934897dfb4d67e4dcb162acc29
Sha256: 321e550281abc225a3176edb6b69b020c7432d284fdd89adc53195c343529c09
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fae9d4d-0def-4061-8627-8275cb9bf063.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8199
x-amzn-requestid: b6222d8e-dbdc-4ce5-aa29-bf19f2c3c899
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UGNjeE3yIAMFsBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b25c7c-40acd1742b019c356825aee2;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 00:04:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: o25CUj9w0fB-6yJt-wIpIRSxvdaZeLGIdyFLa_qq7Z4OCjDkJUHLog==
via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Jun 2022 00:25:37 GMT
age: 63618
etag: "9401f89dae8f91b3102639ce24040d18dd72afdb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8199
Md5:    b832f744cfbfe4a0d8c0dd7f98e9be61
Sha1:   9401f89dae8f91b3102639ce24040d18dd72afdb
Sha256: a0dce5d6323ac0cfff9c26bc6462e191008e5ed687cba352bf86b2b94bed3569
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a9018db-9e51-4804-9c56-7ac1d2176356.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7541
x-amzn-requestid: 779e91c5-09a6-4677-b9af-db6164ebb546
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UJhf-GHDoAMF4vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b3af99-3fcfaf7b7fb299d957dd7c98;Sampled=0
x-amzn-remapped-date: Thu, 23 Jun 2022 00:11:05 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CcwKacvVQnoJ0ekzaETeTbu4TNQm4k42NWhwK5zuHsZBNOBKejOc5w==
via: 1.1 ba55932f4947672586f0865cea81e028.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Jun 2022 00:26:11 GMT
age: 63584
etag: "042581a2f8d5f788b6dbf7c6c940a3952ae4bef9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7541
Md5:    0fe5340d565c2ab7d1b311321ed2f8a3
Sha1:   042581a2f8d5f788b6dbf7c6c940a3952ae4bef9
Sha256: 2085de5ba82db208e4e22402651fb0b795f66da76707c95550d4ebdb54f84c2f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b96f859-10eb-474c-8b8c-9e5902b28bd8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4878
x-amzn-requestid: 3caca75d-3753-41f1-a4ec-277c173b26b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UJgx6FZ0IAMFbFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b3ae72-39f08dc910314e8f247ffd44;Sampled=0
x-amzn-remapped-date: Thu, 23 Jun 2022 00:06:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0PmqyPibimYVX8rYVY3HbTcsEGTrWDA5L40dzwo1fS0CCyJrgMJOJg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Jun 2022 00:24:25 GMT
age: 63690
etag: "1abc297d329369f4aee445a5eabab7fa089ce764"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4878
Md5:    c90b3735180499df633f9fc6272ff632
Sha1:   1abc297d329369f4aee445a5eabab7fa089ce764
Sha256: 00f8db77cec74be5fb70d1d5bd351fee3dfdc2d807a861184f28e47344a760ad
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd503013e-1d8c-401f-9cec-1ff9f66e12cc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6301
x-amzn-requestid: 9626bf34-3a9c-4ceb-b1ce-a6850ac5e08e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UHxQ6GTwIAMFpBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b2fc05-3b334b5b16dea3084acc58e6;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 11:24:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYjWJg3ZDJuiVVXOP2XhQba_4_Dj7cyfljOVt6EeUEHKeFZHfr316A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Jun 2022 13:05:59 GMT
age: 17996
etag: "0d1c278b921fb50ab3e7c31851f099efbecbbbc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6301
Md5:    86fa458d383f4e14f204f22d50693fb6
Sha1:   0d1c278b921fb50ab3e7c31851f099efbecbbbc2
Sha256: 94629bc0b7076f2af81b4507f9fe8bd2b5cc71ea751957e38101e4220f3681e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ede3b35-ed04-43c1-a89d-1e51e8238519.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8664
x-amzn-requestid: 73e50f0d-161c-4499-a0de-5f0c488847e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UHN7pFQMIAMFzXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b2c37d-665d55c33dbc35ae426f55ab;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 07:23:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: adDKh34dFEHOLuFp65ql_jpbGRNYRc4bxg6fsEX6nNs3LIKpe7bXoA==
via: 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Jun 2022 00:26:11 GMT
age: 63584
etag: "21c3cee9895d0d49ebec760238535178cccf4a3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8664
Md5:    d2e59de119422f4e4cc08572906c9146
Sha1:   21c3cee9895d0d49ebec760238535178cccf4a3d
Sha256: 3fb79d0c34bf27b111e659aa64cc190239c9a17954e2fdd0d353aabaaf845387