Overview

URL akados.questcm.pl/
IP46.242.131.1
ASNhome.pl S.A.
Location Poland
Report completed2022-07-05 22:12:10 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-05 2 takemore-prizes.life/js/popunder.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Added / Verified Severity Host Comment
2022-07-05 2 takemore-prizes.life Sinkholed


Files

No files detected



Passive DNS (14)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-05 05:12:14 UTC 52.42.134.249
[Mnemonic Passive DNS] takemore-prizes.life (1) 0 No data No data 5.101.45.6 Unknown ranking
[Mnemonic Passive DNS] akados.questcm.pl (27) 0 No data No data 46.242.131.1 Unknown ranking
[Mnemonic Passive DNS] r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-07-05 04:59:43 UTC 23.36.77.32
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.65
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-05 05:12:14 UTC 54.230.111.14
[Mnemonic Passive DNS] fonts.gstatic.com (6) 0 2017-01-30 04:59:51 UTC 2022-07-05 04:59:30 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] stats.g.doubleclick.net (1) 96 2017-01-30 04:59:59 UTC 2022-07-05 05:00:01 UTC 173.194.222.157
[Mnemonic Passive DNS] ocsp.pki.goog (13) 175 2017-06-14 07:23:31 UTC 2022-07-05 04:59:45 UTC 142.250.74.3
[Mnemonic Passive DNS] www.google-analytics.com (2) 40 2017-01-30 05:00:06 UTC 2022-07-05 16:58:28 UTC 142.250.74.174
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-07-05 12:56:13 UTC 34.120.237.76
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-05 18:37:22 UTC 93.184.220.29
[Mnemonic Passive DNS] fonts.googleapis.com (1) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain

Last 8 reports on IP: 46.242.131.1

Date UQ / IDS / BL URL IP
2022-07-18 13:13:41 +0000
0 - 0 - 2 szkolenia.questcm.pl/ 46.242.131.1
2022-07-13 14:40:37 +0000
0 - 0 - 2 szkolenia.questcm.pl/ 46.242.131.1
2022-07-13 14:08:58 +0000
0 - 0 - 2 akados.questcm.pl/ 46.242.131.1
2022-07-11 23:12:38 +0000
0 - 0 - 2 akados.questcm.pl/ 46.242.131.1
2022-07-11 03:12:41 +0000
0 - 0 - 2 akados.questcm.pl/ 46.242.131.1
2022-07-04 20:10:44 +0000
0 - 0 - 2 szkolenia.questcm.pl/ 46.242.131.1
2022-06-02 13:41:29 +0000
0 - 0 - 1 akados.questcm.pl/ 46.242.131.1
2022-06-02 06:25:56 +0000
0 - 0 - 1 akados.questcm.pl/ 46.242.131.1

Last 10 reports on ASN: home.pl S.A.

Date UQ / IDS / BL URL IP
2022-08-19 08:41:05 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-19 06:44:44 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-19 04:36:54 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-19 02:39:24 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-19 00:42:52 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-18 14:41:06 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-18 11:26:56 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-18 00:22:19 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-16 23:34:37 +0000
0 - 0 - 1 royal-meat.eu/nhcb.bns/5/login.php 46.242.238.111
2022-08-16 15:03:35 +0000
0 - 0 - 1 zdrowejaja.com/Upload/file/gonusibiberixevolu (...) 79.96.198.181

No other reports on domain: questcm.pl



JavaScript

Executed Scripts (27)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (69)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         46.242.131.1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 05 Jul 2022 22:11:55 GMT
Content-Length: 162
Connection: keep-alive
Location: https://akados.questcm.pl/


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659"
Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8148
Expires: Wed, 06 Jul 2022 00:27:44 GMT
Date: Tue, 05 Jul 2022 22:11:56 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 05 Jul 2022 21:55:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: THY1kKa9rVQyC3kN0nu4y8qpEV810bTvI9H3TDekRFHdW0MlT5a0iw==
Age: 969


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.14
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 05 Jul 2022 03:26:45 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FdprVt_Zc7KYB4vGAmKOBF6L91LEC_RjUnJZyWbt_-UrMtv1G30ElA==
age: 67511
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B2E948059C9CC8F9CD1C8871761A83B4BC19AD2AC721AD7FAAD8FB9FC5000CF1"
Last-Modified: Tue, 05 Jul 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21531
Expires: Wed, 06 Jul 2022 04:10:47 GMT
Date: Tue, 05 Jul 2022 22:11:56 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 05 Jul 2022 21:34:56 GMT
Cache-Control: max-age=3600
Expires: Tue, 05 Jul 2022 21:42:29 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EBp_eNXF-NHm1sfchSXFHaeOCDigXspacxgEUOkHcr5Uf6IG-xQdGA==
Age: 2220


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5950
Cache-Control: 'max-age=158059'
Date: Tue, 05 Jul 2022 22:11:56 GMT
Last-Modified: Tue, 05 Jul 2022 20:32:46 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:56 GMT
content-type: text/html; charset=UTF-8
content-length: 10405
x-pingback: https://akados.questcm.pl/xmlrpc.php
link: <https://akados.questcm.pl/wp-json/>; rel="https://api.w.org/", <https://akados.questcm.pl/>; rel=shortlink
set-cookie: _eshoob=1; expires=Tue, 12-Jul-2022 22:11:56 GMT; Max-Age=604800; path=/
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.3.20, PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1724), with CRLF, LF line terminators
Size:   10405
Md5:    db18054b9fdb9225acf0560aeafccd6b
Sha1:   418f58a5703266b4f37611f43c4d294e0ede418b
Sha256: 4fa7a2ea528a1f03bfd02291ad2ed4f9c84a8221fecb3360e9f6b543faf4b6f3
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FUpJZ+cZl/RW2sd2lZQOcQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.42.134.249
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C/+aBxQ25wtd5ggYLxAPb/d8V9I=

                                        
                                            GET /wp-content/plugins/sitemap/css/page-list.css?ver=4.3 HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: text/css
content-length: 332
x-accel-version: 0.01
last-modified: Tue, 07 Apr 2015 15:12:00 GMT
etag: "2be-51323d6147000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   332
Md5:    73e049d3006dc4c4687f3ce08f671f41
Sha1:   905d21a3f629fc3275de74478954aa46d18eccbe
Sha256: 3268efc4799981ae1b1518d9e11e75c13c650085b8ce84fde9d90d6b6e4a7bd3
                                        
                                            GET /wp-content/themes/Divi-AKADOS/images/logo.png HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/png
content-length: 46247
last-modified: Fri, 24 Apr 2015 13:30:14 GMT
etag: "553a4566-b4a7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 454 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size:   46247
Md5:    8ee7d231378fd72064b17a2e49c72a21
Sha1:   0a0861ea240d1a1c1695a54bec4951ea717404df
Sha256: a60cceccf1d494b25db6871e1097f226976dfeb507b345a0960db249100a65a9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2015/04/4_opt.png HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/png
content-length: 11534
last-modified: Thu, 09 Apr 2015 07:32:56 GMT
etag: "55262b28-2d0e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   11534
Md5:    d3cc7e256defa3ec894717c186fba4b2
Sha1:   56fac8dba4a6c08f081ccf5823eca7e3442dc7e3
Sha256: d7f5295f2852602a3d6faa6c6de57b13da2817aa5674e27dab5c86475694b68d
                                        
                                            GET /wp-content/uploads/2015/04/1-1_opt.png HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/png
content-length: 12927
last-modified: Thu, 09 Apr 2015 07:33:00 GMT
etag: "55262b2c-327f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   12927
Md5:    efb06199c744d565899ebc8cfca0e6fb
Sha1:   2b91c1e5e037d9a7df740ff62bf5f098163d25f9
Sha256: cfc55b0446ae85e7c9b57d4a1e03ef88516172ca6a7d1eb1cb87072a0feb526a
                                        
                                            GET /wp-content/uploads/2015/04/pieczec-akados_opt.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 58740
last-modified: Wed, 08 Apr 2015 08:53:22 GMT
etag: "5524ec82-e574"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "border bs:0 bc:#000000 ps:0 pc:#eeeeee es:0 ec:#000000 ck:500d02a4f1f1d7497340cc586896bf11", Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 250x216, components 3\012- data
Size:   58740
Md5:    a67ad47e9f0bd6dd70fedbe7549c7cad
Sha1:   723f52d141d994a3f2895102e9c9d829f90fd0e6
Sha256: 6c02976f1d02a29932fd1e698ae9d2b585d1c6459da18b0f2cda9ac72adde832
                                        
                                            GET /wp-content/uploads/2015/04/8_opt-1.png HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/png
content-length: 11183
last-modified: Wed, 08 Apr 2015 08:53:50 GMT
etag: "5524ec9e-2baf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 250 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size:   11183
Md5:    7e61bad3a542c752a5ec48066184742f
Sha1:   3e7c4ce11a452a24fdc4a610d664f66dedc8d031
Sha256: 4144c06d288ca9576e5d9440f40bb7d8a5f8253523f66c0310432c02dd4898ab
                                        
                                            GET /wp-content/uploads/2015/04/Krzysztof-Sarnecki-glowna.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 9152
last-modified: Tue, 19 May 2015 10:12:12 GMT
etag: "555b0c7c-23c0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 190x190, components 3\012- data
Size:   9152
Md5:    2d2ef5406e21edbc1d0cb26e8cda359f
Sha1:   b4cf9d84df513b2a878879e42b3993bf2de152cc
Sha256: 7887d100118cdde8e9fde0f6a3cddb29a375f1f3305f4afccaf85f6d91f2ebc1
                                        
                                            GET /wp-content/uploads/2015/04/Tomasz-Zambrzycki-glowna.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 9426
last-modified: Tue, 19 May 2015 10:14:16 GMT
etag: "555b0cf8-24d2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 190x190, components 3\012- data
Size:   9426
Md5:    6ab279e3a878028206279b8eba39d294
Sha1:   6ec61d7c018ab8d75cebc3310c89d0befaef4e00
Sha256: 5a40828fce820bd414c0ca02c8e9ac63d461a20fc7d225f97491429de6e28c0b
                                        
                                            GET /wp-content/uploads/2015/04/Michal-Krzyzanowski-glowna.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 9386
last-modified: Fri, 15 Jul 2016 08:00:08 GMT
etag: "57889808-24aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 190x190, components 3\012- data
Size:   9386
Md5:    690763784ac32db706ed7d21246b8d2a
Sha1:   04c8de802b46100e69e60346d76d6882e3a8f567
Sha256: 0e1f7a3ffc39acfba64e6b85a432066d886a271f337d5ac71eab4d7bf70a3c71
                                        
                                            GET /wp-content/uploads/2015/04/Agro-Perfect-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 12209
last-modified: Wed, 20 May 2015 15:37:14 GMT
etag: "555caa2a-2fb1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x161, components 3\012- data
Size:   12209
Md5:    96978affa26121b85b5564623da0fbb0
Sha1:   a160d1e1bbce6fa7d4318b0cebee35e420d6e0c5
Sha256: 0031ac4273fed0068ded3ef0b3570b4f2b99d60925978ca3307f7010b56dff54
                                        
                                            GET /wp-content/uploads/2015/04/Coca-Cola-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 13567
last-modified: Wed, 20 May 2015 15:42:22 GMT
etag: "555cab5e-34ff"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x108, components 3\012- data
Size:   13567
Md5:    9695631d7752a5abe2b2b94a52aa4653
Sha1:   3a7e7883f116f6615d9cce444bdeac7f63680ed6
Sha256: c4e9e17f356c239e09166f86e4e2110b6486ec21025c898e200721acd2efcdde
                                        
                                            GET /wp-content/uploads/2015/04/360sbc-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 13815
last-modified: Wed, 27 May 2015 12:44:56 GMT
etag: "5565bc48-35f7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x169, components 3\012- data
Size:   13815
Md5:    c89744a12876357c0fc3cdbaea9bdf9d
Sha1:   72291d86c84a2ae8405330b9eba728296bae6e11
Sha256: a84eceb215e41955d2d75853bf21b9b61b7d21ace18b54434fe1a41c35d2d3c7
                                        
                                            GET /wp-content/uploads/2015/04/coca-cola-hellenic-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 20231
last-modified: Wed, 27 May 2015 12:45:28 GMT
etag: "5565bc68-4f07"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x172, components 3\012- data
Size:   20231
Md5:    3465d3bb65b775f97f9cc4f56680babb
Sha1:   9d8db7c00f3c4354a8989c8f36dc0606b6cc1e3c
Sha256: 9cb36ecd699ec12df779202a44fabbcf44f81d373182f363b9cfdee169c4c4c8
                                        
                                            GET /wp-content/uploads/2015/04/ConQuest-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 16112
last-modified: Wed, 27 May 2015 12:44:12 GMT
etag: "5565bc1c-3ef0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x190, components 3\012- data
Size:   16112
Md5:    73cab43f13e40ca49a3dbc1b4659197f
Sha1:   389a458284b86ec81a91e4b879ba90c1b3637803
Sha256: 88783ba5621960e22f190c569a6abb1f3dbc5c3a630716ccd90ece62921fac95
                                        
                                            GET /wp-content/uploads/2015/04/Decathlon-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 8558
last-modified: Wed, 20 May 2015 15:40:56 GMT
etag: "555cab08-216e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x78, components 3\012- data
Size:   8558
Md5:    03d8d1051455bcc0f8a281533c743c7a
Sha1:   e290212045838961cfcfb06a47b4507f4868c736
Sha256: 5000d5ba1929bccb78607507231b4296b235e4c08e855917e0ef478d6fe17e96
                                        
                                            GET /wp-content/uploads/2015/04/Mobile-Vikings-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 14438
last-modified: Tue, 02 Jun 2015 13:58:28 GMT
etag: "556db684-3866"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x188, components 3\012- data
Size:   14438
Md5:    82daae08cda3a5efe87e7ce01fc0dd78
Sha1:   1039bcf82fa72b66baa4f5dde9f5f58f0f8cede9
Sha256: 692c090a84dc26354130e697ce2a532cdab545eaf89d3e8585848d0e9a0efb21
                                        
                                            GET /wp-content/uploads/2015/04/PWC-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 6180
last-modified: Wed, 20 May 2015 15:58:28 GMT
etag: "555caf24-1824"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x161, components 3\012- data
Size:   6180
Md5:    32bc3ae348fd5644c3aac2c1a3f58409
Sha1:   a82236a9c47f81ee561618ec8f5e03ab34ffd232
Sha256: dbf6948cac8a42d0abe76289cece03767c04ff0aa12cc26b71da6636393d2271
                                        
                                            GET /wp-content/uploads/2015/04/TVP-Katowice-logo.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 11057
last-modified: Wed, 20 May 2015 15:59:32 GMT
etag: "555caf64-2b31"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x161, components 3\012- data
Size:   11057
Md5:    f9950cfbe802e875dccf7b08b057d4c0
Sha1:   05c8c112fa4dcc40b568f926193fa4ae561aa9b6
Sha256: db20cb8599a6973dcc135e72f684f74fd4d1f83e9a924862b209dad14c5551f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA65FC7DF65C71379519114ABF767DB48E8EE5AB17B7A275A8F01BF8A9BE2993"
Last-Modified: Mon, 04 Jul 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4759
Expires: Tue, 05 Jul 2022 23:31:16 GMT
Date: Tue, 05 Jul 2022 22:11:57 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/uploads/2015/04/AKADOS-Level-Up.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 444268
last-modified: Fri, 19 Jun 2015 16:32:54 GMT
etag: "55844436-6c76c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1680x800, components 3\012- data
Size:   444268
Md5:    ccc74bcd15a41a4910457efdae933a50
Sha1:   9b46bf6de419a9c0cac6ee98025406f497e95ab4
Sha256: 6f3b0fcdf3f0628922a045053e3a61e827771c25b329f1ac247a2c001a51921b
                                        
                                            GET /wp-content/uploads/2015/04/shutterstock_165166805_opt.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 14437
last-modified: Mon, 18 May 2015 14:40:48 GMT
etag: "5559f9f0-3865"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "border bs:0 bc:#000000 ps:0 pc:#eeeeee es:0 ec:#000000 ck:500d02a4f1f1d7497340cc586896bf11", baseline, precision 8, 200x200, components 3\012- data
Size:   14437
Md5:    c63ea5ed4ea12f3538bebc93b75307a2
Sha1:   2eff7054e00d553ed473161f70906012112be3fc
Sha256: e3d8396ac2041f97081b0b2e45eba36a5b2a64eb18035af12c6da6360ddee884
                                        
                                            GET /wp-content/uploads/2015/04/shutterstock_208766092_opt.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 16991
last-modified: Mon, 18 May 2015 14:41:40 GMT
etag: "5559fa24-425f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "border bs:0 bc:#000000 ps:0 pc:#eeeeee es:0 ec:#000000 ck:500d02a4f1f1d7497340cc586896bf11", baseline, precision 8, 200x200, components 3\012- data
Size:   16991
Md5:    e3e428e5b06f5eee6eee34fafa29eda5
Sha1:   d3e777f888c463495673997bc806aac1eda375ed
Sha256: 06d515cd72b34e26ff43d033864b251e5b8a382496678f894597a5fd97996667
                                        
                                            GET /wp-content/uploads/2015/04/zarzadzanie-czasem.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 21995
last-modified: Sat, 13 Jun 2015 15:58:40 GMT
etag: "557c5330-55eb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1680x500, components 3\012- data
Size:   21995
Md5:    498aae0dfad17c75c1ec5bf0e1c3adf5
Sha1:   bd0d325a4620624f50f179c5b4c1de0779c03c9d
Sha256: 0c43159168e50c9e88e0b7ac9b37920987a7929e3e2f9fcc7be3d37281f71c08
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2015/04/Krzysztof-Sarnecki-spotkanie.jpg HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/jpeg
content-length: 294496
last-modified: Sat, 25 Apr 2015 15:03:16 GMT
etag: "553bacb4-47e60"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x600, components 3\012- data
Size:   294496
Md5:    c867fc944b3a9bd10a37d096e252c6db
Sha1:   b4548c65e104d80d0f98b77058af3e8f1690a8cf
Sha256: 679ba3759a345a31f2ab573474f6c80a5577047eb71d6d568635035a78d2ebfd
                                        
                                            GET /wp-content/themes/Divi/core/admin/fonts/modules.ttf HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/wp-content/themes/Divi/style.css
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: application/font-sfnt
content-length: 82920
last-modified: Fri, 03 Feb 2017 11:03:44 GMT
etag: "58946390-143e8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Size:   82920
Md5:    87a9fcfa516cd7576d52480b0bb21dae
Sha1:   7b2b31c6f1e91d53b76daad7fedea802592e4da4
Sha256: c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCoYb8td.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://akados.questcm.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 01:26:49 GMT
expires: Thu, 29 Jun 2023 01:26:49 GMT
cache-control: public, max-age=31536000
age: 593108
last-modified: Tue, 19 Apr 2022 19:06:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11736, version 1.0\012- data
Size:   11736
Md5:    df6439b6349b0acdf98abe056304ab18
Sha1:   d87d58325b8b12d441ae905581e20e0d2bc148ce
Sha256: 4a4f58434b93fbf37fcc36c1c167d30a4b1dc1f5fe8fc8f74796cab974aabd65
                                        
                                            GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://akados.questcm.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Jul 2022 16:09:29 GMT
expires: Wed, 05 Jul 2023 16:09:29 GMT
cache-control: public, max-age=31536000
age: 21748
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Size:   15700
Md5:    3d7f7413fca69bff4d231ebdc50aaab0
Sha1:   cb18e7943b6a8a0e3672d7242197c19a226b92e8
Sha256: 6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
                                        
                                            GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCoYb8td.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://akados.questcm.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 22:17:57 GMT
expires: Wed, 28 Jun 2023 22:17:57 GMT
cache-control: public, max-age=31536000
age: 604440
last-modified: Tue, 19 Apr 2022 19:07:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11760, version 1.0\012- data
Size:   11760
Md5:    f54251ea804647e0203e453359a69fb1
Sha1:   c02db1a2028be922135239168d270579220844a0
Sha256: b7eaf0683081d1ec178eafefff2c407475fe4e69e0d7104e0121f72dcdd1c4d2
                                        
                                            GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://akados.questcm.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 22:17:37 GMT
expires: Wed, 28 Jun 2023 22:17:37 GMT
cache-control: public, max-age=31536000
age: 604460
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Size:   15660
Md5:    d7b0b953a50fddaa88089b5b787cf719
Sha1:   2f85bc568b27659a3d6452f58f9fd7678450326d
Sha256: e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
                                        
                                            GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://akados.questcm.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 22:58:41 GMT
expires: Wed, 28 Jun 2023 22:58:41 GMT
cache-control: public, max-age=31536000
age: 601996
last-modified: Tue, 19 Apr 2022 18:53:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15528, version 1.0\012- data
Size:   15528
Md5:    595fe3fc0b85f3cc9ef5aed2d519abc5
Sha1:   96e76de44987e9dec2f97f1e5eb7a18c738daf5d
Sha256: 747d5a0865fe76129cc17fe70097fd5b1db733ed3bbfa0210a8505d80c14ab5a
                                        
                                            GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://akados.questcm.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 23:48:39 GMT
expires: Wed, 28 Jun 2023 23:48:39 GMT
cache-control: public, max-age=31536000
age: 598998
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Size:   11816
Md5:    7fa68490a833a8fa395e5f3bffafc052
Sha1:   1880e3743548106319713b937e7769eee6b1ce21
Sha256: 30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2015/04/AKADOS-favico.png HTTP/1.1 
Host: akados.questcm.pl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         46.242.131.1
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 05 Jul 2022 22:11:57 GMT
content-type: image/png
content-length: 1749
last-modified: Fri, 17 Apr 2015 09:17:54 GMT
etag: "5530cfc2-6d5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   1749
Md5:    4d0222568e451659726cf9c2274515f2
Sha1:   aa24d33a1e4eabea3fb3364fe0c75ed5176cb475
Sha256: 7f48707cb8fea3ba66a321774ac71b3af3a02d174df9a43e0b1fce46c7fa50ac
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 05 Jul 2022 20:41:12 GMT
expires: Tue, 05 Jul 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 5446
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /plugins/ua/linkid.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Jul 2022 21:49:26 GMT
expires: Tue, 05 Jul 2022 22:49:26 GMT
cache-control: public, max-age=3600
age: 1352
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1335)
Size:   859
Md5:    904463ce35aee800847ab85ec948aaf6
Sha1:   904e4d2647466c7f7e0f7412019984e3b2ccfb24
Sha256: 057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-55574509-4&cid=1855616712.1657059118&jid=703861804&gjid=245459346&_gid=96315514.1657059118&_u=KGBAgEAjBAAAAE~&z=1789698977 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://akados.questcm.pl
Connection: keep-alive
Referer: https://akados.questcm.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.194.222.157
HTTP/2 200 OK
                                        
access-control-allow-origin: https://akados.questcm.pl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 05 Jul 2022 22:11:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 05 Jul 2022 22:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3219
Expires: Tue, 05 Jul 2022 23:05:37 GMT
Date: Tue, 05 Jul 2022 22:11:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3219
Expires: Tue, 05 Jul 2022 23:05:37 GMT
Date: Tue, 05 Jul 2022 22:11:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3219
Expires: Tue, 05 Jul 2022 23:05:37 GMT
Date: Tue, 05 Jul 2022 22:11:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3219
Expires: Tue, 05 Jul 2022 23:05:37 GMT
Date: Tue, 05 Jul 2022 22:11:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3219
Expires: Tue, 05 Jul 2022 23:05:37 GMT
Date: Tue, 05 Jul 2022 22:11:58 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1bf6d27-2cf4-4c33-9983-68ea58ece368.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9437
x-amzn-requestid: 4b67fdbb-27a8-47ab-b92e-a404aa6d562e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UnljbHnKoAMF86w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bfb615-48d7c4324051729c33e01a73;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 03:05:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vKc6qZmalBmkbceAuncO_mvzc7KMeq1gFWwfV3wgDGyIeCgBpNeipA==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 16:29:07 GMT
age: 20571
etag: "62985fafd5ff2b3adbc9e539ccd7d073ff9ae9b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9437
Md5:    87d5975302710a908fbc832e0fc4a8b7
Sha1:   62985fafd5ff2b3adbc9e539ccd7d073ff9ae9b2
Sha256: 94960a9b2b6c65c14c68af8af8f1194aa9d1c62a5a7c927ae5a3570c745a2ce8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde8f4008-69f3-4766-a957-006ebc39d2e4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9047
x-amzn-requestid: 8e0eccf9-7f3e-4333-a5d7-a35dd0e068eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BU0HNmoAMFaQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af51-1d81f8e10200694125ede95f;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:25 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4HkBGv-aAOwIfyBaFSIlfMPFqYYUaIDzTfUADctfm1g3COtQS_UojA==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:58 GMT
age: 1260
etag: "7aa6cd994a565c8b6832d48c1e36b17f33621e90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9047
Md5:    bb2f16af747cd633f71de1966771b532
Sha1:   7aa6cd994a565c8b6832d48c1e36b17f33621e90
Sha256: b61a354007e630a3be3ae0c2c2336d3dd71cec02eab7b4234ebb40f69561acf0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb43d6c1-9277-41c7-a6a2-7ed481cb6008.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6262
x-amzn-requestid: 9dc74855-a8e3-4dc0-9962-a783dd17957a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0CI7GQqIAMFmjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4b09f-450c578d07eb9b177b0e8218;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:43:59 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jvMpr8coDJY8LAthF-gHD2WJNMhyu30I_M7uJ__4rHZLDRyWXJPWKw==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:49:50 GMT
age: 1328
etag: "516324380a247cd6fd356168b23603d2e63da2f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6262
Md5:    405e2c36af93466ec54a46cc09c98a34
Sha1:   516324380a247cd6fd356168b23603d2e63da2f2
Sha256: ab63d378c66b22b900a4c853c124e91273a730df53e0e6b7868c3f9102993b55
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ef4a155-99c7-4810-bb0a-a2795ff0fb56.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6350
x-amzn-requestid: 069800ee-c9fe-4b73-8708-ca4c9f89584e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BUyFkgIAMFccg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af51-6495224e662d8fbe63dece74;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:25 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SnCaojuy3Ax-0pLF7I9bzLBti2OxdIaWekOiTslJx2dWac-s_THiig==
via: 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:33 GMT
age: 1285
etag: "5c290d39a1ba968f7134d0ae6522bfd74485c42a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6350
Md5:    815fad277a212592f6f19843191eae5c
Sha1:   5c290d39a1ba968f7134d0ae6522bfd74485c42a
Sha256: 9dc39b527d0f49b3df028e63a15ad20c45d9f26a4ad07e557c239c31dfe33ce4
                                        
                                            GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Jul 2022 22:11:57 GMT
date: Tue, 05 Jul 2022 22:11:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   9668
Md5:    980550948a1e05d514786515fb387488
Sha1:   d8daff15ef65e86363aec60549f430ab2ac56d60
Sha256: dc822b2a8c563d7c93faa6d6e8ec8d6643f237156b6c9f7f64a9ecae160b09ee
                                        
                                            GET /js/popunder.js HTTP/1.1 
Host: takemore-prizes.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://akados.questcm.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.101.45.6
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 05 Jul 2022 22:11:57 GMT
Connection: close
Last-Modified: Thu, 20 May 2021 05:56:31 GMT
Vary: Accept-Encoding
ETag: W/"60a5fa0f-32c"
Content-Encoding: br
Cache-Control: no-transform


--- Additional Info ---
Magic:  ASCII text, with very long lines (318), with CRLF line terminators
Size:   5381
Md5:    329761f1142731df46c60a8360a03559
Sha1:   b4a455658bc44b90e923325c8b1e87bad8ef1174
Sha256: 9377ea8f8f1e3e1b6d0ce43ce907ec2f87fa3927e95171956bfff5ce7ff4ded4

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed