orto-optica.pl/
200 OK 20 kB IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (36570)
Hash a71be2a2cb2847dfb223f16c98552dc0
99b54ddf26cdaf37030b9616a710dbb696e26ca0
aef78bb7ed3a515649c5641172c2afe874fb7fbd1c9aaf1422520f9d0bb0c782
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Tue, 29 Nov 2022 20:01:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 19587
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 29 Oct 1923 20:30:00 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2702
Expires: Tue, 29 Nov 2022 21:36:50 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5530
Cache-Control: max-age=141093
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:48 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 12:03:21 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14456
Expires: Wed, 30 Nov 2022 00:52:44 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 20:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2033
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:regular|Raleway:regular|Raleway:regular
200 OK 605 B URL HTTP/1.1 fonts.googleapis.com/css?family=Poppins:regular|Raleway:regular|Raleway:regular
IP
Hash 2c32c265f04bf593c92dcf7afedffd25
0072d204cc48065d95332a06305e03d6c09db421
4e37525e2f8a258db11bcd41c0e25712ee7c05571b99071ec17e4cb2b696fc5c
GET /css?family=Poppins:regular|Raleway:regular|Raleway:regular HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 29 Nov 2022 20:51:48 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
orto-optica.pl/wp-content/cache/wpfc-minified/1r1l93hm/7misr.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/1r1l93hm/7misr.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/1r1l93hm/7misr.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/1r1l93hm/7misr.css
vary: User-Agent
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gYQi+wPGY5NNjrqvY3XL7EyDSrAjcompX7d39EaBGDeT8SslorbAJrkWiEYSGcfAMEbcwYrHF1g=
x-amz-request-id: 5TD9WKX28EJ3S1QV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 20:45:36 GMT
age: 372
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/8xszu7yk/a0uko.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/8xszu7yk/a0uko.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/8xszu7yk/a0uko.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/8xszu7yk/a0uko.css
vary: User-Agent
orto-optica.pl/wp-content/cache/wpfc-minified/es80cgsd/a0uk9.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/es80cgsd/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/es80cgsd/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/es80cgsd/a0uk9.css
vary: User-Agent
orto-optica.pl/wp-content/cache/wpfc-minified/1somm5v/a0uk9.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/1somm5v/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/1somm5v/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/1somm5v/a0uk9.css
vary: User-Agent
orto-optica.pl/wp-content/cache/wpfc-minified/14n8tayg/a0uk9.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/14n8tayg/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/14n8tayg/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/14n8tayg/a0uk9.css
vary: User-Agent
orto-optica.pl/wp-content/cache/wpfc-minified/qtmrs0lh/a0xv3.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/qtmrs0lh/a0xv3.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/qtmrs0lh/a0xv3.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/qtmrs0lh/a0xv3.css
vary: User-Agent
orto-optica.pl/wp-content/cache/wpfc-minified/7mvnr2s8/a0uk9.js
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/7mvnr2s8/a0uk9.js
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/wpfc-minified/7mvnr2s8/a0uk9.js HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/7mvnr2s8/a0uk9.js
vary: User-Agent
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 20:51:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 02ca4292c31c0c0caa2ed7401af8d5bd
16ced3b6956cea150f608c9848bfa2f31e0a3e18
e90eff9a37ae4b3dff3bf24081ff3f110c45619703129b1b3f3f8bd3e0df9da0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5841
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:48 GMT
Last-Modified: Tue, 29 Nov 2022 19:14:27 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
orto-optica.pl/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
vary: User-Agent
orto-optica.pl/wp-content/cache/wpfc-minified/7yl33h8d/a0uk9.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/7yl33h8d/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/7yl33h8d/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/7yl33h8d/a0uk9.css
vary: User-Agent
orto-optica.pl/wp-content/cache/wpfc-minified/f6hkgu05/a0uk9.css
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/cache/wpfc-minified/f6hkgu05/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/cache/wpfc-minified/f6hkgu05/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/cache/wpfc-minified/f6hkgu05/a0uk9.css
vary: User-Agent
www.googletagmanager.com/gtag/js?id=UA-63413355-26
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-63413355-26
IP
File type ASCII text, with very long lines (1921)
Hash 8c44ed33ac57581845dbe892637f9a2c
157ab81e35ceada72902a5378872b124f05ef1be
8581e6770c4ec296d5a20a88c8b65b252c23095bc63b6cf20123314a42062a40
GET /gtag/js?id=UA-63413355-26 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 20:51:48 GMT
expires: Tue, 29 Nov 2022 20:51:48 GMT
cache-control: private, max-age=900
last-modified: Tue, 29 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43616
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 02ca4292c31c0c0caa2ed7401af8d5bd
16ced3b6956cea150f608c9848bfa2f31e0a3e18
e90eff9a37ae4b3dff3bf24081ff3f110c45619703129b1b3f3f8bd3e0df9da0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5841
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:48 GMT
Last-Modified: Tue, 29 Nov 2022 19:14:27 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d0a60719ffe56cd734b4b93aeac8571c
f692f3392b64d7a4b03947a0ea5b1eda1cb775ab
0690893cba845adb0fd3219b3c090352838a22a45fdf1d28c5298bade0e4646e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0690893CBA845ADB0FD3219B3C090352838A22A45FDF1D28C5298BADE0E4646E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 02:51:48 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d0a60719ffe56cd734b4b93aeac8571c
f692f3392b64d7a4b03947a0ea5b1eda1cb775ab
0690893cba845adb0fd3219b3c090352838a22a45fdf1d28c5298bade0e4646e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0690893CBA845ADB0FD3219B3C090352838A22A45FDF1D28C5298BADE0E4646E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 02:51:48 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d0a60719ffe56cd734b4b93aeac8571c
f692f3392b64d7a4b03947a0ea5b1eda1cb775ab
0690893cba845adb0fd3219b3c090352838a22a45fdf1d28c5298bade0e4646e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0690893CBA845ADB0FD3219B3C090352838A22A45FDF1D28C5298BADE0E4646E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 02:51:48 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 279 B IP
Hash 02ca4292c31c0c0caa2ed7401af8d5bd
16ced3b6956cea150f608c9848bfa2f31e0a3e18
e90eff9a37ae4b3dff3bf24081ff3f110c45619703129b1b3f3f8bd3e0df9da0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5841
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:48 GMT
Last-Modified: Tue, 29 Nov 2022 19:14:27 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8996c478934fe77dc66ba3f6ff345474
9fffd71e859a37ddbaea9afaa81d23bba6575898
faf926228c659966eb38ed231dddd0ed656a2b4d196eac942357e74baf183919
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAF926228C659966EB38ED231DDDD0ED656A2B4D196EAC942357E74BAF183919"
Last-Modified: Tue, 29 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21583
Expires: Wed, 30 Nov 2022 02:51:31 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Connection: keep-alive
orto-optica.pl/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
200 OK 3.8 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 4b1a0faa6e091ff8a1d3caf003785fe8
08aeb41f47f3194482f61c9b9f2a87439744f0c7
1067a3d5976fc950cd1e7dcb0108cd3d308202506cf80bf50e61c64cd94dfc8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3770
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
200 OK 1.1 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 2f24ea3eadd3ee8d3730fb8e2dec34f7
6d7b1e8a0ab6945d30d399e1cb395800427ed547
c29c8a6002c6ab85b39a33ef6e8526c4b4c255e2b18073ae281e39fb78c547f2
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1090
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
200 OK 981 B URL HTTP/2 orto-optica.pl/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (1668)
Hash 3fe4f2e7eb4e4919118d2aedede9e6b4
fb79dbf29227ba29d44123a4dc8c8bde001f46ac
195392f3677f146b65100c2b51e19fb1f66c9ac9be051728a52b4db81d69edc4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 981
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
200 OK 791 B URL HTTP/2 orto-optica.pl/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (2139), with no line terminators
Hash a719a0a28dd40a301188600c0640b8c1
60fbaaa306218fe94979824780ccc1a20240ad57
20520ce91c1663b93accec2c8b08d233bcd54829f55f886ca11c1c131403ba5a
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 791
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
200 OK 1.0 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (2938), with no line terminators
Hash ee696e5312f6d922a12cb2f0a26e0195
2aec4a0c25abc9a6c0bf07932f7cefb3789490d9
d5daef2f1677f423b3de771861902a6a14b77d66425cadc633896b98d9794d33
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1037
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d0a60719ffe56cd734b4b93aeac8571c
f692f3392b64d7a4b03947a0ea5b1eda1cb775ab
0690893cba845adb0fd3219b3c090352838a22a45fdf1d28c5298bade0e4646e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0690893CBA845ADB0FD3219B3C090352838A22A45FDF1D28C5298BADE0E4646E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 02:51:48 GMT
Date: Tue, 29 Nov 2022 20:51:48 GMT
Connection: keep-alive
orto-optica.pl/wp-content/themes/optima/assets/js/plugins.js?ver=6.1.1
200 OK 63 kB URL HTTP/2 orto-optica.pl/wp-content/themes/optima/assets/js/plugins.js?ver=6.1.1
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (24472)
Hash 727575bf8ddc5f7587c69116a757d540
81b7b6a3cf47f30fc5b3fa859f4cac22c804c3be
eb1064ab7db1fac1d1f06cdb91eaf33991431498fa6cc51f1745066ac8d4afa2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/optima/assets/js/plugins.js?ver=6.1.1 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Thu, 26 Jul 2018 20:52:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 62856
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
orto-optica.pl/wp-includes/js/hoverIntent.min.js?ver=1.10.2
200 OK 704 B URL HTTP/2 orto-optica.pl/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (1464)
Hash 8a17c6b2e72d8f5e956b6dc951cad954
5ab730e86399c4e5897248b6d45bc31a6cceb81a
54923b4fd0ecc397f9c1b6a40eab70315d82edc4f5cf8dc3343e76977317771a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Tue, 24 May 2022 23:56:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 704
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/themes/optima/assets/js/theme.js?ver=6.1.1
200 OK 18 kB URL HTTP/2 orto-optica.pl/wp-content/themes/optima/assets/js/theme.js?ver=6.1.1
IP
ASN #31229 Beyond.pl sp. z o.o.
Hash 0079748f81eb26e0847eb64f971ab917
b5788a4a46be2c7a64a42adc09d32b10957650ee
945fa9f4c7968c3e26d2bbb49797c5cf5a855ff751cbdc09c390c8eeabe6f958
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/optima/assets/js/theme.js?ver=6.1.1 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Thu, 26 Jul 2018 20:52:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 17614
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.0
200 OK 4.9 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (315)
Hash 2706718b1988157c1593d5b95e68cb78
dbc481a3f2b99195273494a26662c142913d749e
8bc31b7b20e8e8fa3932b4bcf2a42d27d1a33994d5ed282b12bb30ef7074290e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:22:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4877
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.10
200 OK 1.2 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.10
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (4591), with no line terminators
Hash 0661c7de7de6b92861e986b4cb242921
62c29ec7aa7eeda3b7a6fe57fba4005a82a77288
a1ee3c8b7385c1b49926ea66e4fcaa42f9eacaf9be95afdc152dededbce4eb71
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.10 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:22:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1227
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.4.7
200 OK 5.7 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.4.7
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (19781), with no line terminators
Hash 42c0ed06e3e8ff0fa9ad9d1dca910be8
14673b5c02003407925a630e2d3813e8660d7fc7
9366ceb347e2d335b905a78975f1bf4751a70b36cc36d5b093f847d42ab46c1c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.4.7 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Mon, 16 Jul 2018 20:12:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 5731
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=5.4.7
200 OK 2.6 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=5.4.7
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (7808)
Hash af8d4d24dc919852da9d250e62b59f15
baff2abc8f7a3c3258b9bcd7f6029681d1bd3d5a
317f8f145b711c31289d86b2cb0a961b16551665dfdef609ae08069e87edf255
GET /wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=5.4.7 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Mon, 16 Jul 2018 20:12:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2610
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=5.4.7
200 OK 324 B URL HTTP/2 orto-optica.pl/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=5.4.7
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (645), with no line terminators
Hash 615762f32666e3428705d665db37230f
c60199e3374c36184e445d5439b1cefbddd14f62
9ff18e02b79239e5911d166c55f864f48ddb8eba652a5711cffdb88caf459281
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=5.4.7 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Mon, 16 Jul 2018 20:12:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 324
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=5.4.7
200 OK 2.8 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=5.4.7
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (9707), with no line terminators
Hash d0ce69cc0d0c85d6274e8313a8154b1b
99986638ea79a929211a1dc406fc089a1980f973
d9fadf1604712fa628c71e229a87a28115a49a1fcbadd4edef9958a742c464bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=5.4.7 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Mon, 16 Jul 2018 20:12:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2751
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/es80cgsd/a0uk9.css
200 OK 6.9 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/es80cgsd/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (30755), with no line terminators
Hash 9ba5590d5703c9484b5bd646bfcac560
2bbb00b9c62f3611880a952708ae6367e7100d4d
46be64b205bb89d633f4176aa29d90e2be6ade4e846755d39505c00244b5c750
GET /wp-content/cache/wpfc-minified/es80cgsd/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 30 Sep 2022 16:23:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 6934
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/14n8tayg/a0uk9.css
200 OK 1.5 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/14n8tayg/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (7847), with no line terminators
Hash f3781f37e8dbe78813cd63372761be43
0802538c54306763e23b8bba05e5eb8d1d7b68be
194b3a5559a54cf2d3f20df3b7c9c150d9dc26a2a3e05543442447179ab0f840
GET /wp-content/cache/wpfc-minified/14n8tayg/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 30 Sep 2022 16:23:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1456
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/qtmrs0lh/a0xv3.css
200 OK 1.3 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/qtmrs0lh/a0xv3.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (10296), with no line terminators
Hash 6a2ffcad881a3f2849e994b5824169bc
bc35f49312cb5a5a7694ac5370642788ab35f720
eef5abfe0f51427232a7070cb138865f1d820a85e29625f078072569e7f73122
GET /wp-content/cache/wpfc-minified/qtmrs0lh/a0xv3.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 30 Sep 2022 16:23:47 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1307
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
200 OK 5.8 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document, ASCII text, with very long lines (21310), with no line terminators
Hash 489a8a2752c2bf49cd9ee8cf2d42becb
c4f6c1d125733736dd41eb7e6d4099a18796a7ea
3aef3fcf3c5e76a7618a95987f29c1a3f3769153a232654d8b96f0c1d99af184
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 5757
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/7yl33h8d/a0uk9.css
200 OK 8.7 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/7yl33h8d/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (5363)
Hash ef3ad0e9f12ae95c8537934826e175e8
a2199ae0dda0e2126c63aad53284a293851c8ff6
acb7841f370cc7e6a3087e7fa05f767693f4f571ae12aef16d0e0411858cf0ec
GET /wp-content/cache/wpfc-minified/7yl33h8d/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 30 Sep 2022 16:23:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 8700
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
200 OK 3.5 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (9111)
Hash 2cd4fdab8008543c444423f9ebedc4c0
103341cdb31439ff7a2e93038bb104378fe6ad7a
225a37006f64034c3004ae097e2bab8f6eeba540d687d13bb209a930f854298c
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3493
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0
200 OK 6.6 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document, ASCII text, with very long lines (24951), with no line terminators
Hash fd2c65d49a51dbe41c31c505fb9ccc01
5c9248ee68474fb8e662efc8844c8fa65068032d
ebab63f2c0a442f100fe05c098d497ba6fa00889f084e910e53675f75d28ac42
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 21:23:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 6605
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/1r1l93hm/7misr.css
200 OK 38 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/1r1l93hm/7misr.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (43920)
Hash 7f0023c1a3fdf01daa0c50984f9d60ef
20c5efdf3245f10a444724ad16bcda484a65c021
13372c49a0d5554a849f5986cd3f5a42b1bd2c493fc07976c9c9c8c86b42a336
GET /wp-content/cache/wpfc-minified/1r1l93hm/7misr.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Wed, 02 Nov 2022 14:57:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 38053
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/8xszu7yk/a0uko.css
200 OK 48 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/8xszu7yk/a0uko.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (60673)
Hash 85ec1bf15ea99cf8a83c48bb4e661b38
1f5ea995cbe9245f33dd324fd1c95a82c0d5fa69
d164c0a45bf588b5cf58762b0867d933ccb580ff0a1088f7f12a4cd76388a409
GET /wp-content/cache/wpfc-minified/8xszu7yk/a0uko.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 30 Sep 2022 16:23:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 48083
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/f6hkgu05/a0uk9.css
200 OK 38 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/f6hkgu05/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (65536), with no line terminators
Hash c7958a4974929deb2aa1c691115d113a
c4ba5b754241d5ce300ca7b017ff78d7797301b8
024d9e9a640b8af8e425421a59307bd8de5626e3c6e0c3e7453abad1f3868010
GET /wp-content/cache/wpfc-minified/f6hkgu05/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 30 Sep 2022 16:23:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 37658
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/lastudio-core/assets/js/swatches.js?ver=6.1.1
200 OK 1.6 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/lastudio-core/assets/js/swatches.js?ver=6.1.1
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (5250), with no line terminators
Hash 137e344f569d64af9be46b9d13ef4f47
b91d18d0a5926224bfebf51cb6707b9758b32803
6f891bc814023a2f43d3da8b521c0218dca5427dab1e6582c3f140709bbef2a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/lastudio-core/assets/js/swatches.js?ver=6.1.1 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Thu, 26 Jul 2018 20:55:38 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1565
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
200 OK 2.9 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (9937), with no line terminators
Hash 38069f295d4d139cbd6bc607cb308ef4
7a93a2c3d0add3f34d5a6096e1988ac51e66093c
3f2d9d73b3b0bc9b309266e9b719a09442d1416cd14ca6578a0c1f7f2ed2d2a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 11:56:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2948
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/1somm5v/a0uk9.css
200 OK 61 kB URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/1somm5v/a0uk9.css
IP
ASN #31229 Beyond.pl sp. z o.o.
File type ASCII text, with very long lines (15885)
Hash dfb99ed70651db9ee96e392ef4dde06f
4f1d39513b868c221186759481c84dc1868c31f3
b38f00a9a1299d992ba33c00fcb3f44d5224337d8407e2198c7d95c756e7f811
GET /wp-content/cache/wpfc-minified/1somm5v/a0uk9.css HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: text/css
last-modified: Fri, 30 Sep 2022 16:23:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 61100
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
200 OK 3.9 kB URL HTTP/2 orto-optica.pl/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 2f61aa3c296bae2dad61fda1fffdb170
096565b6067dd9ed25ef6ef156616bc28cb34507
5a81924774ba24f8dc25af594eb820ede88cfc7608c1d6d7de1b4a6183806485
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 11:56:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3944
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/uploads/2018/06/logo.jpg
200 OK 49 kB URL HTTP/2 orto-optica.pl/wp-content/uploads/2018/06/logo.jpg
IP
ASN #31229 Beyond.pl sp. z o.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 452x111, components 3\012- data
Hash f3c87d1b8806d5ccac3ce77ebf64570e
c8bf14d704d46f0814497e233b2149b18e6efcd0
c4abbc1ab967824d4522327f345cb7226e0131f3a7c5f8dfb92bbe222331a787
GET /wp-content/uploads/2018/06/logo.jpg HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/jpeg
last-modified: Mon, 16 Jul 2018 20:13:22 GMT
accept-ranges: bytes
content-length: 48778
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2181
Cache-Control: max-age=132680
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:49 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:43:09 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
orto-optica.pl/wp-content/uploads/2020/10/zdj.-3-zamiast-pani-przy-aparacie.jpg
200 OK 436 kB URL HTTP/2 orto-optica.pl/wp-content/uploads/2020/10/zdj.-3-zamiast-pani-przy-aparacie.jpg
IP
ASN #31229 Beyond.pl sp. z o.o.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=1125, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1688], baseline, precision 8, 1688x1125, components 3\012- data
Size 436 kB (436096 bytes)
Hash 3876b6010da8228a42064f1ceb3b2506
a016b989e820c8acc313c5b701b97a88d9cc146d
449d65c251e0672e4d77ec44dd8f0fc0b3b80eff48313ffa0b63df5b91166008
GET /wp-content/uploads/2020/10/zdj.-3-zamiast-pani-przy-aparacie.jpg HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/jpeg
last-modified: Mon, 12 Oct 2020 20:10:43 GMT
accept-ranges: bytes
content-length: 436096
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/uploads/2018/06/3.jpg
200 OK 500 kB URL HTTP/2 orto-optica.pl/wp-content/uploads/2018/06/3.jpg
IP
ASN #31229 Beyond.pl sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, description=Optometry concept - pretty young woman having her eyes examined by an eye doctor (color toned image; shallow DOF), manufacturer=Canon, model=Canon EOS 5D Mark III, xresolution=300, yresolution=308, resolutionunit=2, software=Adobe Photoshop Lightroom 4.3 (Macintosh), datetime=2013:04:19 19:58:35], baseline, precision 8, 1688x1125, components 3\012- data
Size 500 kB (499513 bytes)
Hash 1f2996cc58df6784eb2558f661bfe2e4
f1d52ca14c6aed3f175a627268a8fa0e12723971
696c580d6b8498aaf77a8c685dcb0b8a44fc5a57d2bad7cdd81ca9746d389eef
GET /wp-content/uploads/2018/06/3.jpg HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/jpeg
last-modified: Mon, 16 Jul 2018 20:13:18 GMT
accept-ranges: bytes
content-length: 499513
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/uploads/2020/10/Zdj.-2-zamiast-zdj-z-soczewka.jpg
200 OK 528 kB URL HTTP/2 orto-optica.pl/wp-content/uploads/2020/10/Zdj.-2-zamiast-zdj-z-soczewka.jpg
IP
ASN #31229 Beyond.pl sp. z o.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=21, height=3840, bps=266, PhotometricIntepretation=RGB, description=Beautiful elderly lady wearing eyeglasses close-up., manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, width=5760], baseline, precision 8, 1920x1280, components 3\012- data
Size 528 kB (528222 bytes)
Hash 594226fbcd8dd416d09f6c9d2d2abec7
131437801235944a2b04bc18e83bac439088d8df
3e6c7f016655294745b567a756bcfce30ef25d2ac03f9cdfc701b765effa792f
GET /wp-content/uploads/2020/10/Zdj.-2-zamiast-zdj-z-soczewka.jpg HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/jpeg
last-modified: Mon, 12 Oct 2020 20:10:08 GMT
accept-ranges: bytes
content-length: 528222
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/uploads/2020/10/Zdj.1-dzidzius-zamiast-dziewczynki-z-okularami.jpg
200 OK 566 kB URL HTTP/2 orto-optica.pl/wp-content/uploads/2020/10/Zdj.1-dzidzius-zamiast-dziewczynki-z-okularami.jpg
IP
ASN #31229 Beyond.pl sp. z o.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=4912, bps=218, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, width=7360], baseline, precision 8, 1920x1281, components 3\012- data
Size 566 kB (565531 bytes)
Hash fbebdea074aefaf16999f909f13183f6
45fba8ef12a308cb1a93e57ef5be5f0caf0ffef1
71991e412ee975e67596a58446e4a72ec3ce4e8d3ed7626fa03181c0c6104125
GET /wp-content/uploads/2020/10/Zdj.1-dzidzius-zamiast-dziewczynki-z-okularami.jpg HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/jpeg
last-modified: Mon, 12 Oct 2020 20:09:14 GMT
accept-ranges: bytes
content-length: 565531
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/uploads/2018/06/1.jpg
200 OK 508 kB URL HTTP/2 orto-optica.pl/wp-content/uploads/2018/06/1.jpg
IP
ASN #31229 Beyond.pl sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, manufacturer=Canon, model=Canon EOS 30D, orientation=upper-left, xresolution=154, yresolution=162, resolutionunit=2, software=Adobe Photoshop 7.0 CE, datetime=2008:08:23 22:37:30], baseline, precision 8, 1688x1125, components 3\012- data
Size 508 kB (508283 bytes)
Hash 0d8cb57a9c4cfba7454279542eb5d7a4
a3cfbdd27240bb256417e921047311a4447a08e8
6afe7a1867562e15d35a664a57f6adb31fbd390dcf803046f5edef7b406ca841
GET /wp-content/uploads/2018/06/1.jpg HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: image/jpeg
last-modified: Mon, 16 Jul 2018 20:13:16 GMT
accept-ranges: bytes
content-length: 508283
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCGPrEHJA.woff2
200 OK 15 kB URL HTTP/1.1 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCGPrEHJA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15104, version 1.0\012- data
Hash a586de0e147f9dd86eea08ca4fc4c209
45f0407deeb6594b81310a10e3e86c03b3ac3284
293dc7f51ed1678d3c4b6275151ecdceb7282530adf8d1ce7e490054ed8f6703
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCGPrEHJA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15104
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 19:26:14 GMT
Expires: Wed, 29 Nov 2023 19:26:14 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:38:57 GMT
Content-Type: font/woff2
Age: 5135
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 7.9 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7884
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 28 Nov 2022 22:32:20 GMT
Expires: Tue, 28 Nov 2023 22:32:20 GMT
Cache-Control: public, max-age=31536000
Age: 80369
Last-Modified: Wed, 27 Apr 2022 17:03:52 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2
200 OK 5.5 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 5544, version 1.0\012- data
Hash 0ed299a4bb5262e17e2145783b2c18f1
65af2a037a5ef8a8d383d518377ea1f9f6837631
cb8bdeabc838774d9808eb7c4cfcea963b57855e34f84b54797076940c8e5986
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 5544
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 09:33:35 GMT
Expires: Fri, 24 Nov 2023 09:33:35 GMT
Cache-Control: public, max-age=31536000
Age: 472694
Last-Modified: Wed, 27 Apr 2022 17:03:48 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
200 OK 21 kB URL HTTP/1.1 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 21280, version 1.0\012- data
Hash 16911581ab7ea10687a5aee74cbc5612
b0b24248345739209d753a4ac77ccfc1f627b219
c78a1da5fd0868a547cf285748c7fb73006571190385eb71c0d601b6b240ffaf
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21280
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 14:28:15 GMT
Expires: Wed, 29 Nov 2023 14:28:15 GMT
Cache-Control: public, max-age=31536000
Age: 23014
Last-Modified: Mon, 18 Jul 2022 19:57:59 GMT
Content-Type: font/woff2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eK2RxC7jJVI28NdFNMStpA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y+odFEUSWsrngwNMm8A4cWG7Qxw=
ocsp.digicert.com/
200 OK 471 B IP
Hash c3c6fcc1a6ec6e438b371359a220d437
646d2c502eb3579d0c394dbdd16ef10f60f43063
5e75d86847b64e661c218e63d1b4b2c4a9ade7506b3b50fce16dd39ebaa5c5fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5873
Cache-Control: max-age=137790
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:49 GMT
Etag: "6385d132-1d7"
Expires: Thu, 01 Dec 2022 11:08:19 GMT
Last-Modified: Tue, 29 Nov 2022 09:30:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 20:46:55 GMT
expires: Tue, 29 Nov 2022 22:46:55 GMT
cache-control: public, max-age=7200
age: 294
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.7
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.7
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.7 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:49 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.7
vary: User-Agent
orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.7
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.7
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.7 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:49 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.7
vary: User-Agent
orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.7
301 Moved Permanently 41 kB URL HTTP/1.1 orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.7
IP
ASN #31229 Beyond.pl sp. z o.o.
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash 865f89562c006cd32158015097aeac24
ee4f9b70fb5eaf888930a330d06a06e7994de0f0
2c64afce678572a2da672c90679da641b1ded377c6a566648278233ca11c3716
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.7 HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://orto-optica.pl/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:49 GMT
server: LiteSpeed
location: https://orto-optica.pl/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.7
vary: User-Agent
connect.facebook.net/pl_PL/sdk.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pl_PL/sdk.js
IP
File type ASCII text, with very long lines (1957)
Hash 086724150bc92b5a4000002ca4dd36c1
37d5b1f8cc17b8fc7e81314d2c41973e0b05e09a
0a5cbcf7dd2bca8f12f34f869fcaa967036650cfd22caa3ddeee84d87cc425ae
GET /pl_PL/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: b384727d6ff4c096f66daa8707e73d8e
etag: "026596009b6b075b0bda29690206cffb"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 29 Nov 2022 21:05:06 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: CGckFQvJK1pAAAAspN02wQ==
x-fb-debug: hxRoQUyeK5+f63jQIp2T+Q1VJwDDQwgCDhvNNL33y0fBTE/fu1vrSyOl/f8514y1VeVYNYsV8oa8tJ8KndUVFw==
priority: u=3,i
content-length: 1686
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 20:51:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c3c6fcc1a6ec6e438b371359a220d437
646d2c502eb3579d0c394dbdd16ef10f60f43063
5e75d86847b64e661c218e63d1b4b2c4a9ade7506b3b50fce16dd39ebaa5c5fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5873
Cache-Control: max-age=137790
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:49 GMT
Etag: "6385d132-1d7"
Expires: Thu, 01 Dec 2022 11:08:19 GMT
Last-Modified: Tue, 29 Nov 2022 09:30:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/pl_PL/sdk.js?hash=eb2fbf8a9f1f48b789e0f9c5b7753fa7
200 OK 104 kB URL HTTP/2 connect.facebook.net/pl_PL/sdk.js?hash=eb2fbf8a9f1f48b789e0f9c5b7753fa7
IP
Size 104 kB (104350 bytes)
Hash 60c7eb43de5f500f33aa730248640a94
4878a7f226c580d0959dfacb01a7ab14fa3611bc
165475866daeb28b57c2dbdd8d6ab1db15ff439d84daa1649705116d65cc03bf
GET /pl_PL/sdk.js?hash=eb2fbf8a9f1f48b789e0f9c5b7753fa7 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0b404085a92c9646f0e0d1a576f4daf1
etag: "960739e716d1138d352247df3034f469"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 29 Nov 2023 20:19:25 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: VRe5Njmr3pUZWlXriw1pfw==
x-fb-debug: 6hIM23mDfKOi1PTzqkN0HBESXZHOhVB/uRhSU+r66O3Pa53P0rIPoXVD/z2pBJtAKx7f7ZjXMYA5Zi5wcTXJtw==
priority: u=3,i
content-length: 87037
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 20:51:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
orto-optica.pl/?wc-ajax=get_refreshed_fragments
301 Moved Permanently 707 B URL HTTP/1.1 orto-optica.pl/?wc-ajax=get_refreshed_fragments
IP
ASN #31229 Beyond.pl sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://orto-optica.pl/
Cookie: _ga=GA1.2.914108429.1669755109; _gid=GA1.2.9931106.1669755109; _gat=1; _gat_gtag_UA_63413355_26=1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 20:51:49 GMT
server: LiteSpeed
location: https://orto-optica.pl/?wc-ajax=get_refreshed_fragments
vary: User-Agent
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-47812929-1&cid=914108429.1669755109&jid=1819833333&gjid=892413488&_gid=9931106.1669755109&_u=IEBAAEAAAAAAACAAI~&z=1141879079
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-47812929-1&cid=914108429.1669755109&jid=1819833333&gjid=892413488&_gid=9931106.1669755109&_u=IEBAAEAAAAAAACAAI~&z=1141879079
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-47812929-1&cid=914108429.1669755109&jid=1819833333&gjid=892413488&_gid=9931106.1669755109&_u=IEBAAEAAAAAAACAAI~&z=1141879079 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://orto-optica.pl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 29 Nov 2022 20:51:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-63413355-26&cid=914108429.1669755109&jid=900742166&gjid=1234808390&_gid=9931106.1669755109&_u=aEDAAUABAAAAACAAI~&z=1471021378
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-63413355-26&cid=914108429.1669755109&jid=900742166&gjid=1234808390&_gid=9931106.1669755109&_u=aEDAAUABAAAAACAAI~&z=1471021378
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-63413355-26&cid=914108429.1669755109&jid=900742166&gjid=1234808390&_gid=9931106.1669755109&_u=aEDAAUABAAAAACAAI~&z=1471021378 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://orto-optica.pl
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://orto-optica.pl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 29 Nov 2022 20:51:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:51:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2645
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 20:51:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2645
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 20:51:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2645
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 20:51:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2645
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 20:51:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:52:21 GMT
age: 57569
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 12:20:15 GMT
age: 30695
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:55:32 GMT
age: 64578
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9a6e5f60b87d3879606a6707feb37a73
373c96c2e0006d70954d4b4ebd850f62f558e92c
1ae48f692f44d357e21eec708b46f22c36a3de21be8d0f1c2035d197e0aa89de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9546
x-amzn-requestid: 60e352b5-ab38-4975-bf26-500f0a639a2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFfulExwIAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637edff6-1364912f7fd292da6453a83e;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 03:07:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qtRAIXoswvTgNWZzaQE1WHZQXoJRtK9nKpusFtXH3pDRHH_DZtsLFw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 11:46:43 GMT
age: 32707
etag: "373c96c2e0006d70954d4b4ebd850f62f558e92c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 64233
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jb1eLyzn88lV_UTId-Fl3OnftDn8c7o5j8d16_nzHCNST_68MZ1pvA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 20:39:42 GMT
age: 728
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.1.0/js/v4-shims.js?ver=6.1.1
200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.1.0/js/v4-shims.js?ver=6.1.1
IP
GET /releases/v5.1.0/js/v4-shims.js?ver=6.1.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 20:51:48 GMT
content-type: application/javascript
x-amz-id-2: wW0GzR718xPq/u17V9oCEifQYp9TvOQ8uwccUK9ttF8oWDhsHJxs7u9fkoRWMa6K+w+EEAywnXg7MQtzg0B46Q==
x-amz-request-id: V2B6BQHXN3E56VFB
last-modified: Wed, 30 Jun 2021 15:30:32 GMT
etag: W/"88238d38a876234b6c4ae00ac1a784f2"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1210104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ps3LY7T4MoRQTbF4EQMCxktx0odHVHQCeeDM6nOSdz1FaCF3CPBTb%2BOkVouFu8mEO5A%2F%2F8iekWqJG5g%2FfxCTAoGQ7hrUasHHjOVK5QLRx7uouZRSEOzKLAmSNEU%2B0yHASwb%2Fp%2FhD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771e39343bb1772c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
orto-optica.pl/wp-content/cache/wpfc-minified/7mvnr2s8/a0uk9.js
200 OK 0 B URL HTTP/2 orto-optica.pl/wp-content/cache/wpfc-minified/7mvnr2s8/a0uk9.js
IP
ASN #31229 Beyond.pl sp. z o.o.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/wpfc-minified/7mvnr2s8/a0uk9.js HTTP/1.1
Host: orto-optica.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://orto-optica.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: max-age=A10368000, public
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 16:23:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 90705
date: Tue, 29 Nov 2022 20:51:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.1.0/js/all.js?ver=6.1.1
200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.1.0/js/all.js?ver=6.1.1
IP
GET /releases/v5.1.0/js/all.js?ver=6.1.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orto-optica.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 20:51:48 GMT
content-type: application/javascript
x-amz-id-2: ZfiwHCwmZBTJyAKt+a03FPRVPbPg80pRlR+bzwa965S8lrFLTOY1lpqf/kTrLJ/HKCC2dn48WMU=
x-amz-request-id: V2B87RT0Q78MKFKN
last-modified: Wed, 30 Jun 2021 15:30:32 GMT
etag: W/"004993df80280fa6c4af6ca17c4e5433"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1210104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QsP8AVxVYr10kSI82CquAulhL3HEYv4uCzc8nB3O9euoil%2BYqm6susMpk7nCTBXFGu6Mp8m8uILEvT9cystPE7KhYZiq4sjgY6ebZjFkrnjtfwweXCwFKL%2FEYqWdoC42rfjs5wcr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771e39350d56772c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2.57.138.77
142.250.74.106
23.36.76.226
31.13.72.12
93.184.220.29
0.0.0.0