twojeloty.pl/
193.178.43.195200 OK 5.9 kB IP 193.178.43.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Hash 1108878da32372b10bb41cd559cf25f0
4a1644043dc419ec84179feb8cb9ea0dc9109343
b992a93ae1dddd129b3cd61a164fcf2570148279e449c01a1c0f881cbc15d0d8
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.30
set-cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5339
Expires: Thu, 10 Nov 2022 10:00:30 GMT
Date: Thu, 10 Nov 2022 08:31:31 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6546
Cache-Control: max-age=100119
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 08:31:31 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 12:20:10 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7625
Expires: Thu, 10 Nov 2022 10:38:36 GMT
Date: Thu, 10 Nov 2022 08:31:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6Kz60PLKh32PJlMKDZl18iHr2Z2UuoFRmsl2U0ZL3FmSTOaj0R+1HA5+Z1z9MpJupLdshqIcWQ4=
x-amz-request-id: D8VDXTGY3JMDQVZX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 10 Nov 2022 08:12:04 GMT
age: 1167
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jqueryui/1.8/themes/base/jquery-ui.css
142.250.74.170200 OK 5.8 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jqueryui/1.8/themes/base/jquery-ui.css
IP 142.250.74.170:0
File type ASCII text, with very long lines (551)
Hash 6ba899d70fbbb03f9268eb452306c3ef
216bc2461f6f6bd57f61ec7e6cbc2af902823394
7196b738a90d836254a81c751da83c0b6316de3f71d175bb0aed041591272ccd
GET /ajax/libs/jqueryui/1.8/themes/base/jquery-ui.css HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 5770
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 03 Nov 2022 11:05:51 GMT
Expires: Fri, 03 Nov 2023 11:05:51 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 595540
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/css; charset=UTF-8
ajax.googleapis.com/ajax/libs/jqueryui/1.8/jquery-ui.min.js
142.250.74.170200 OK 52 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jqueryui/1.8/jquery-ui.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (64651)
Hash 90a9d6025c5c6fb9d338400221db28c4
8db4fb29ad7009a26a3e9b60945de0dbcbc216dc
e02adbfb9cea8e180e266a1f23d446a4aa072f50d602d990880708d3b3185469
GET /ajax/libs/jqueryui/1.8/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 51653
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 03 Nov 2022 21:13:09 GMT
Expires: Fri, 03 Nov 2023 21:13:09 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 559102
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js
142.250.74.170200 OK 94 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (65483)
Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7
06e872300088b9ba8a08427d28ed0efcdf9c6ff5
61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
GET /ajax/libs/jquery/1.8/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 93636
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 09 Nov 2022 08:27:44 GMT
Expires: Thu, 09 Nov 2023 08:27:44 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 86627
twojeloty.pl/style/camera.css
193.178.43.195200 OK 3.1 kB URL HTTP/1.1 twojeloty.pl/style/camera.css
IP 193.178.43.195:0
Hash 2d3b84480b76ed76a236b3f70a5c1c5a
1a2fb9b04f41d57664bce3facc22bae380a5235d
79198d2b80d0d20d622da0b275bcc8cd682a27ae3d695fdcc1dc3749926c99fa
GET /style/camera.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "671d-61e036fb-639088672aa5cc95;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3104
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 08:31:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
twojeloty.pl/style/fb.css
193.178.43.195200 OK 766 B URL HTTP/1.1 twojeloty.pl/style/fb.css
IP 193.178.43.195:0
Hash b0c98c0c3f0e1aa5f0b9a04310e1fb9e
c44be1d06f14454ffba043c6662de97e61c0b3e6
03a07c850fc574c0c1fb6f5a20e6dc1097d03c85e9353f6731dd22337e454aac
GET /style/fb.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "b9c-61e036fb-b7523d379ad66617;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 766
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/js/jquery.prettyPhoto.js
193.178.43.195200 OK 6.5 kB URL HTTP/1.1 twojeloty.pl/js/jquery.prettyPhoto.js
IP 193.178.43.195:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (4432)
Hash 77d249e07c0d0fce0cab7e6840a7f13b
3d0d59b58cf140b44ca2949c561d1fa837adc1c9
89a5b9a3fcc785528f8b9fa951f52315fae8c83f5f90bb7c6bc9c6aa24634094
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.prettyPhoto.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "6123-61e036f9-bddc6818709ab748;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 6471
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/js/jquery.easing.1.3.js
193.178.43.195200 OK 2.0 kB URL HTTP/1.1 twojeloty.pl/js/jquery.easing.1.3.js
IP 193.178.43.195:0
Hash 7afe8f4ade0b122c32b83b9225ce86c2
2b749fd92050250c1b03b3c89e90a709329e3638
a30de22d6d8a4478a60d1abae7527abad0e2484ddfa408beb808f5bedccea848
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.easing.1.3.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1fa1-61e036f9-e7271013ab1bcd98;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2015
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/style/prettyPhoto.css
193.178.43.195200 OK 2.7 kB URL HTTP/1.1 twojeloty.pl/style/prettyPhoto.css
IP 193.178.43.195:0
File type ASCII text, with very long lines (402)
Hash 3d903c823e17fc3bc8d01815ea9c7ad3
635f54fdcbadb492ec0046bd138accf179f94f1c
89388a69511db5c331d9303385a2ae3780fa03c579865a5d4339257a129bedb5
GET /style/prettyPhoto.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "4e0a-61e036fb-7fb10127e188feb6;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2748
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/js/selectplug.js
193.178.43.195200 OK 313 B URL HTTP/1.1 twojeloty.pl/js/selectplug.js
IP 193.178.43.195:0
Hash 85848715687a07fca0de181d56d6e4c4
69e4bf908db8ca2c0c4e3b6be5894734b68ae1a1
9fd5995ff83ff517718e4723ad53dce31114da030c9f6cfbb7708cf662cf34bf
Analyzer Verdict Alert fortinet Phishing
GET /js/selectplug.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "388-61e036f9-3afa156f677a364a;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 313
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/js/jquery.form.js
193.178.43.195200 OK 11 kB URL HTTP/1.1 twojeloty.pl/js/jquery.form.js
IP 193.178.43.195:0
Hash 55c793e0f8d1a8862811a9e725c720c4
d59fc728a43be00fb0cd6a499c30b0e880b83cee
5c3257194bdd3ce7ee1473c17eb034a3ff94e9a8818f14b026d855909537db47
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.form.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "99e4-61e036fa-58b5e1f1516d2497;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 11137
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 08:31:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
twojeloty.pl/js/jquery.jcarousel.min.js
193.178.43.195200 OK 4.5 kB URL HTTP/1.1 twojeloty.pl/js/jquery.jcarousel.min.js
IP 193.178.43.195:0
File type ASCII text, with very long lines (15184)
Hash c47f6ffe9913a77bef7b75c3feccaa73
adc98e3d1ecb0834a25cdb324be95a61785b28a3
37c6cdfea957c19069df4310ded464730e0b23b43e4234a66b63b3967fbf22a6
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.jcarousel.min.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "3d22-61e036f9-36f85fe143281d03;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4513
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/js/gmap3.min.js
193.178.43.195200 OK 9.1 kB URL HTTP/1.1 twojeloty.pl/js/gmap3.min.js
IP 193.178.43.195:0
File type ASCII text, with very long lines (27354)
Hash 901fbf6943c4f52b8b24b501cf99a122
7d964647cfc4e4659eba4292ff12cf4ac0aa7fe0
7480c993d6a5eaf1ff9bb9159048c55a1586a7e3672ac2ff1e080de680c75117
Analyzer Verdict Alert fortinet Phishing
GET /js/gmap3.min.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "6bda-61e036f9-6d15ac34ec0c7547;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 9056
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/js/camera.min.js
193.178.43.195200 OK 8.6 kB URL HTTP/1.1 twojeloty.pl/js/camera.min.js
IP 193.178.43.195:0
File type ASCII text, with very long lines (39035)
Hash 90d24397edc9afaf13b0566d1b06278e
3ae0ad359d437e3b8b07614c539de159f87be63b
18b17df0ddab7205ab0ad71851ca0cdbf8f6231091a5d5ca83f51f1424de05bc
Analyzer Verdict Alert fortinet Phishing
GET /js/camera.min.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "99a2-61e036f9-7a940fae9cf0e66e;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 8573
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/js/scripts.js
193.178.43.195200 OK 359 B URL HTTP/1.1 twojeloty.pl/js/scripts.js
IP 193.178.43.195:0
Hash 4857194145004ad4fd7c7261b5f08895
f3c8749789c56bfbda2b0bdf2147841f147c6396
aa3d6bb26c2117f880a79b1c4bcae78220913bb26192037b47d7b065bcbf7618
Analyzer Verdict Alert fortinet Phishing
GET /js/scripts.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "2b5-61e036f9-773a27179029383f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 359
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/style/carousel.css
193.178.43.195200 OK 555 B URL HTTP/1.1 twojeloty.pl/style/carousel.css
IP 193.178.43.195:0
Hash eaae1fd16e820d718219e23be38b8aa1
91672e9a5d8869619ee81369150a488b5f8196be
ddad36ba5312271848f699a454530ec693bd8bd8037ec7e658ea0f2bba654bc5
GET /style/carousel.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "a72-61e036fb-8b1b2a5c74f79d4f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 555
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
twojeloty.pl/layouts/1006/style.css
193.178.43.195200 OK 6.2 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/style.css
IP 193.178.43.195:0
File type assembler source, ASCII text
Hash e75991893eaf4b1488e95c965397a90a
e030f948a48037a813ab6ca20f158a570be85a11
acf6214f100e3cda1e1968582a2e8420789a54e5119c98690183adfb10b4c692
GET /layouts/1006/style.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:31 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "73e9-61e036fa-f692eefa2239a611;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 6206
date: Thu, 10 Nov 2022 08:31:31 GMT
server: LiteSpeed
maps.googleapis.com/maps/api/js?key=AIzaSyDdNg6J5wn7Ufebm0wK9J01mUMQ4p9KxLM&sensor=true
142.250.74.10200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyDdNg6J5wn7Ufebm0wK9J01mUMQ4p9KxLM&sensor=true
IP 142.250.74.10:0
File type ASCII text, with very long lines (2458)
Hash 502dc0007b7d79519217b1ad9b826bad
1e99d04f7efc7e63e7b3df734a210ce91c130ba1
5ec0d1f2b33dcb105cf2e19e3314c94cf30f4088a2fd0592b81efc6c075aa203
GET /maps/api/js?key=AIzaSyDdNg6J5wn7Ufebm0wK9J01mUMQ4p9KxLM&sensor=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://twojeloty.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 10 Nov 2022 08:31:32 GMT
expires: Thu, 10 Nov 2022 09:01:32 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53391
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=37
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 08:31:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
twojeloty.pl/img/slider/kangurtour.png
193.178.43.195200 OK 4.4 kB URL HTTP/1.1 twojeloty.pl/img/slider/kangurtour.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 53aa6ce0a4241525e6a8054df054cbce
c7b4ff71a6fc04ae9980e4c3ea82dce9aa56371a
a123330bde216dd8d97b5a23e9edbce25efbaff3de8617e37b8fcf7c2d9ef76d
GET /img/slider/kangurtour.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "114f-61e036f9-e6e85648103f4d66;;;"
accept-ranges: bytes
content-length: 4431
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/icon5.png
193.178.43.195200 OK 5.5 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/icon5.png
IP 193.178.43.195:0
File type PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b7587e036e68e1a438b97af6f406443d
dddb9cd8860710ff5f73e562b8ed7779cd0ffb7e
764e7d91a093dcd94bcf0d20bb7c71ff3bca498519ca19205b407c36ea949203
GET /layouts/1006/img/icon5.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "1556-61e036fb-981e97001d667188;;;"
accept-ranges: bytes
content-length: 5462
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/menubot.png
193.178.43.195200 OK 133 B URL HTTP/1.1 twojeloty.pl/layouts/1006/img/menubot.png
IP 193.178.43.195:0
File type PNG image data, 2 x 7, 8-bit/color RGB, non-interlaced\012- data
Hash a40f1fd1a1be2364460882b846de4048
6cd825010ef01b2654570227894459e6b88cdcd5
6471188d2f65c845ebf68d9d8c247ea1886d5f6c8b186b48df1345f98b336441
GET /layouts/1006/img/menubot.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "85-61e036fb-8abde8816718aa09;;;"
accept-ranges: bytes
content-length: 133
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/ecco.png
193.178.43.195200 OK 7.3 kB URL HTTP/1.1 twojeloty.pl/img/slider/ecco.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash d838ecfb2cc8ebb05cfdb78d9a047962
f425116f8fd391c816b39091d158b0cfaeaae421
e8a6469e95dca34b7d4049a7cfb38d22d3ee2f448d9cfab9610ff706ffdeb9f4
GET /img/slider/ecco.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1cb5-61e036f9-349621d09811e21c;;;"
accept-ranges: bytes
content-length: 7349
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/icon2.png
193.178.43.195200 OK 4.0 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/icon2.png
IP 193.178.43.195:0
File type PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 42f57d43dd3cb15eed090888a61a13d5
9d9a35f927c23ae7649a45abc730b710ed61412c
6c6df4427a1db6a89bb18d80a4f807988a59b7720de238168bd92dddf61f2b32
GET /layouts/1006/img/icon2.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "fa9-61e036fb-4c8b8cecf57af2be;;;"
accept-ranges: bytes
content-length: 4009
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/icon3.png
193.178.43.195200 OK 4.0 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/icon3.png
IP 193.178.43.195:0
File type PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b60929fb4afc3eeee0ebd728bfbef883
dcf1bacdd95be484ce9207be4ae67813b5fd66f3
b59dd5c9eda7ad94643219bef636868bf2f6f2e39ba19acf3c32c213c3c3846c
GET /layouts/1006/img/icon3.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "fce-61e036fb-e5bd326cd5a77d9;;;"
accept-ranges: bytes
content-length: 4046
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/icon1.png
193.178.43.195200 OK 4.7 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/icon1.png
IP 193.178.43.195:0
File type PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c19a86c7e7f38243852e51eab20f6b1
1c1b87b0f85914d976a751d7cb78954e5eda6a9d
c8ad1b1857331b4686e1bf56204debe5444a72f3a5cb326a91f48c3614047c7d
GET /layouts/1006/img/icon1.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "1266-61e036fb-affe7e16a713f2af;;;"
accept-ranges: bytes
content-length: 4710
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
aktywnybaner.rzetelnafirma.pl/ActiveBanner/GetActiveBannerImage/1/PQ5CXCTL
217.30.159.227200 OK 0 B URL HTTP/1.1 aktywnybaner.rzetelnafirma.pl/ActiveBanner/GetActiveBannerImage/1/PQ5CXCTL
IP 217.30.159.227:0
ASN #24985 KACZMARSKI-INKASSO-Malgorzata-Kaczmarski
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ActiveBanner/GetActiveBannerImage/1/PQ5CXCTL HTTP/1.1
Host: aktywnybaner.rzetelnafirma.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
HTTP/1.1 200 OK
Cache-Control: public, max-age=3600
Content-Type: image/png
Expires: Thu, 10 Nov 2022 09:31:32 GMT
Last-Modified: Thu, 10 Nov 2022 08:31:32 GMT
Vary: *
Server: Apache/2.4.37 (Debian)
X-AspNetMvc-Version: 3.0
X-Robots-Tag: noimageindex, noindex
Date: Thu, 10 Nov 2022 08:31:31 GMT
Content-Length: 0
twojeloty.pl/clients/104/files/images/boks_1.png
193.178.43.195200 OK 131 kB URL HTTP/1.1 twojeloty.pl/clients/104/files/images/boks_1.png
IP 193.178.43.195:0
File type PNG image data, 310 x 244, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (131117 bytes)
Hash 3488a57547b71af0dc17cd9a893b48cb
91e0608a826b5387faa0a3b1eeaff22c937a2fc0
e1085a93ec93e6d6a3c2afc2ea8b74d13c6f3b4da26a7ae2f3a0f1e87fdbea75
GET /clients/104/files/images/boks_1.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:00 GMT
etag: "2002d-61e036f0-4d04f70bb1870062;;;"
accept-ranges: bytes
content-length: 131117
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/icon4.png
193.178.43.195200 OK 4.2 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/icon4.png
IP 193.178.43.195:0
File type PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash d558006806ee5b4a1138a96ab640cc46
eaa9031d03c6f4a77a855fd9c3b1fe07d2f9f942
dd8bc02a90d726c99ef82f41b653dc5f635443d8126e20d506bdc507d4699082
GET /layouts/1006/img/icon4.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "107b-61e036fb-9458b4f391dca8fd;;;"
accept-ranges: bytes
content-length: 4219
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/icon6.png
193.178.43.195200 OK 4.3 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/icon6.png
IP 193.178.43.195:0
File type PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 19e340e967418af9d0b856fd9ee69614
ee6b5816b27da79094e56a2bb39e8b8a4f288789
951deaf79718de6d815cd4eaa0853110a8d2fc32e4cc4a357eb4edb5668cd1cf
GET /layouts/1006/img/icon6.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "10b4-61e036fb-20a18700ccfb11e2;;;"
accept-ranges: bytes
content-length: 4276
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/images/close_cookies.png
193.178.43.195200 OK 252 B URL HTTP/1.1 twojeloty.pl/images/close_cookies.png
IP 193.178.43.195:0
File type PNG image data, 8 x 8, 8-bit/color RGBA, non-interlaced\012- data
Hash b067a15e0c74ea6a0fc569dfc9bedc7c
3e9ca9131b775c2abf68043ba5e139e3ac3bfc2c
c72f38a8c0d9d48cbd4a346c4d9cc7ee1d2014d53334bf160e0b0a0af327db52
GET /images/close_cookies.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/fb.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:08 GMT
etag: "fc-61e036f8-324fa305d065a6fa;;;"
accept-ranges: bytes
content-length: 252
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/SansitaOne.ttf
193.178.43.195200 OK 25 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/SansitaOne.ttf
IP 193.178.43.195:0
File type TrueType Font data, digitally signed, 17 tables, 1st "DSIG", 32 names, Macintosh\012- data
Hash ee34e395020ab85d4d1b5d6477e77d1b
a8a2ae043d9b999bb2910b5d8d15f1b16b0daf14
3bb4120ed5d4f1474d4a492b7666a570a4ae39f380fdd70514e66046561a1ab0
Analyzer Verdict Alert fortinet Phishing
GET /layouts/1006/SansitaOne.ttf HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: application/x-font-ttf
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "b950-61e036fa-8414e5e4e4910207;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 25107
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
twojeloty.pl/clients/104/img/logo_92b7306b6861131cabff12aef11a34a2.png
193.178.43.195200 OK 17 kB URL HTTP/1.1 twojeloty.pl/clients/104/img/logo_92b7306b6861131cabff12aef11a34a2.png
IP 193.178.43.195:0
File type PNG image data, 409 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 955013411b55f126f491339a88420bb5
9a0a57169c8c6f7cb6d97fa371fef4be7b7a3e1b
b0d56ec61b6e2e6b2d31ae9633f588725a4e5a3d139dfaa75b6b0a6dffecc555
GET /clients/104/img/logo_92b7306b6861131cabff12aef11a34a2.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "41bd-61e036ee-1c83fe51ae7b0386;;;"
accept-ranges: bytes
content-length: 16829
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/clients/104/files/images/boks_2.png
193.178.43.195200 OK 118 kB URL HTTP/1.1 twojeloty.pl/clients/104/files/images/boks_2.png
IP 193.178.43.195:0
File type PNG image data, 310 x 244, 8-bit/color RGBA, non-interlaced\012- data
Size 118 kB (118317 bytes)
Hash 618e26a0fb2d9bd4840a507b5a96406b
db6c641cc52e27d0ea2316b626777bc66851d6a0
79a8bfe9de0cf2a220c1661b040dff097207c230d8f7f101ac1e243c7473fc04
GET /clients/104/files/images/boks_2.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:27:59 GMT
etag: "1ce2d-61e036ef-fffe0d7453878d4d;;;"
accept-ranges: bytes
content-length: 118317
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/topimage.png
193.178.43.195200 OK 28 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/topimage.png
IP 193.178.43.195:0
File type PNG image data, 287 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash 514dc82a98ca30dcab50b6b27789f78b
e86ab0d48eefde1c546f2bec496a3bbf3366af0d
03910b7bffd7174516f8e45252cb03a948f77f2b839896788257870e63ec31e4
GET /layouts/1006/img/topimage.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "6f07-61e036fa-d2b34df13b6400cc;;;"
accept-ranges: bytes
content-length: 28423
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/google_icon.png
193.178.43.195200 OK 3.7 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/google_icon.png
IP 193.178.43.195:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 38196b41c90c55aeac821b8268a13972
59b8ee1a5745e34ff270dfdfd7394d525d2e6944
7cd8f1c1dd95a1e9b9a651e5eb55cad2b6ceca5c5d856d6f69d46aa652b6c15d
GET /layouts/1006/img/google_icon.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "e95-61e036fa-8e978543a30a9fff;;;"
accept-ranges: bytes
content-length: 3733
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/mail.png
193.178.43.195200 OK 478 B URL HTTP/1.1 twojeloty.pl/layouts/1006/img/mail.png
IP 193.178.43.195:0
File type PNG image data, 17 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash b50f7c9135df0a0e25920625e09c33c7
3eb19995e3965dbabc5a7076fd25cae45277ec36
ddba107705484ed1cff35b37bfc686ca57b9ab6018a44841bb7885d47611e1b5
GET /layouts/1006/img/mail.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "1de-61e036fa-12eaacf179c982b5;;;"
accept-ranges: bytes
content-length: 478
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/clients/104/files/images/boks_3.png
193.178.43.195200 OK 125 kB URL HTTP/1.1 twojeloty.pl/clients/104/files/images/boks_3.png
IP 193.178.43.195:0
File type PNG image data, 310 x 244, 8-bit/color RGBA, non-interlaced\012- data
Size 125 kB (124977 bytes)
Hash 3439f25cbcd7b419d95bd35a5899b86a
3005d1e04474b6b9b70f2731a13f08c604ad488c
eb1c963bba555622d2592bc82cd152eca8fdc0a6a982f050e2da416db97ac651
GET /clients/104/files/images/boks_3.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:27:59 GMT
etag: "1e831-61e036ef-140ff37e2a36bb3f;;;"
accept-ranges: bytes
content-length: 124977
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/form.png
193.178.43.195200 OK 313 B URL HTTP/1.1 twojeloty.pl/layouts/1006/img/form.png
IP 193.178.43.195:0
File type PNG image data, 17 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 7814da60156ec333b64d8e23f0c0d0cc
9dd39967acc85f9a1dfb38317f60f11444659573
6b077cd8aa9fb9ba42d97c62c1713b34976b5148d8e47051d6b5765925d27751
GET /layouts/1006/img/form.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "139-61e036fb-e2ccdc0d7d5d39ca;;;"
accept-ranges: bytes
content-length: 313
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/promocje.png
193.178.43.195200 OK 3.2 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/promocje.png
IP 193.178.43.195:0
File type PNG image data, 138 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 1707473eb0b77b3abdc0eb88569441c5
3bfc0a4af69dbe2873163ca6c2f40fb973f0c9ff
7bbc591c5a73064b494a76d622a37c86dcc5ec2f2c5b959fe5721f383f752b49
GET /layouts/1006/img/promocje.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "c80-61e036fb-8f051ce1da143687;;;"
accept-ranges: bytes
content-length: 3200
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/menu.png
193.178.43.195200 OK 185 B URL HTTP/1.1 twojeloty.pl/layouts/1006/img/menu.png
IP 193.178.43.195:0
File type PNG image data, 10 x 64, 8-bit/color RGB, non-interlaced\012- data
Hash 4a9447b124f7c127caab1ae3bf3beacd
9539fd3a150a8b704081e2b5b0a2c8b5dd79bd61
9de1006d94dda53b63d1341ffec5f893e5f480ce02f7ae1d6aad490d9fd6da26
GET /layouts/1006/img/menu.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "b9-61e036fb-62b034d1c6a3df35;;;"
accept-ranges: bytes
content-length: 185
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/gwarancja_ceny.jpg
193.178.43.195200 OK 36 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/gwarancja_ceny.jpg
IP 193.178.43.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2014:04:07 08:57:46], progressive, precision 8, 962x42, components 3\012- data
Hash 8d245a9784a7d79649678362d6090c0a
60f7c05ae31399bb8d9c4f507c51c5f7c04cbbc4
f7230c8fa4ea6cd1b3530d36e5add291618bee893b5fa15d90d043f212650ad1
GET /layouts/1006/img/gwarancja_ceny.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "8be9-61e036fb-839685d70a633c5f;;;"
accept-ranges: bytes
content-length: 35817
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/firma.png
193.178.43.195200 OK 7.2 kB URL HTTP/1.1 twojeloty.pl/img/firma.png
IP 193.178.43.195:0
File type PNG image data, 32 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 46e9b26538998f4e3e34a06c6f46cdef
c76cae47c1241df1334c92b086cc793d4a6311e6
182c443cc7100981508f14c72a3fa1ee110d10cd1ac197c74b9b11d37aef59c5
GET /img/firma.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/fb.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1bf5-61e036f9-d0e338502eee4d0c;;;"
accept-ranges: bytes
content-length: 7157
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/twitter_icon.png
193.178.43.195200 OK 3.4 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/twitter_icon.png
IP 193.178.43.195:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 24d9de2fd3d6a0e9d4a6f302de513d44
02b4db652eedb683165b71e2436f05f6755f8108
632cac2869ac6c4e0932cd55fed024f90fabbaec3e888401ce05ed046485cec9
GET /layouts/1006/img/twitter_icon.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "d6f-61e036fb-a088aea5df32ef3d;;;"
accept-ranges: bytes
content-length: 3439
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/pause.png
193.178.43.195200 OK 233 B URL HTTP/1.1 twojeloty.pl/layouts/1006/img/pause.png
IP 193.178.43.195:0
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash dc4cb7cdfbd2ba1fe712a67d020617da
52e334485c6b2200009da8b59269a6cb1008ae0d
805ee1e8adf98a135f1abfd41c8556c1a3d67c23e71162ed04f81052522381dd
GET /layouts/1006/img/pause.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "e9-61e036fb-a16f2e1824cfe1;;;"
accept-ranges: bytes
content-length: 233
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/arrow_left.png
193.178.43.195200 OK 367 B URL HTTP/1.1 twojeloty.pl/layouts/1006/img/arrow_left.png
IP 193.178.43.195:0
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d36412be5d00068fe69523547bac37c
961adb60e2510a5902834198703d29c910e7942d
3d07ebb859870702ea45e29f93b6946728374d5de234bda98f40bcf0f21af549
GET /layouts/1006/img/arrow_left.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "16f-61e036fa-4b3ade12b02bde79;;;"
accept-ranges: bytes
content-length: 367
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/arrow_right.png
193.178.43.195200 OK 363 B URL HTTP/1.1 twojeloty.pl/layouts/1006/img/arrow_right.png
IP 193.178.43.195:0
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 01e0ffdbe8ea45be30cc1baf2cb8bd9c
1b3d0e59274364d457d6e54360d710c4c91107bc
525c13a64f1543d017799c37f68a0244f4c9e4f919a3af0b774943de7bc2cd46
GET /layouts/1006/img/arrow_right.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "16b-61e036fa-8ba179846d7298ac;;;"
accept-ranges: bytes
content-length: 363
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/images/camera-loader.gif
193.178.43.195200 OK 9.3 kB URL HTTP/1.1 twojeloty.pl/images/camera-loader.gif
IP 193.178.43.195:0
File type GIF image data, version 89a, 30 x 30\012- data
Hash cd2e13291ecdcac7f575beea6d84b099
349fcf8940beb50be3cf0089fa5f4f38f890645c
54ecb255faaf5ef40b325def1fe3ed203589d761ddaacc784fd9401c651156d2
GET /images/camera-loader.gif HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/camera.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/gif
last-modified: Thu, 13 Jan 2022 14:28:08 GMT
etag: "2449-61e036f8-ad3fb9c2e40aac80;;;"
accept-ranges: bytes
content-length: 9289
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/style/prev-horizontal.png
193.178.43.195200 OK 1.1 kB URL HTTP/1.1 twojeloty.pl/style/prev-horizontal.png
IP 193.178.43.195:0
File type PNG image data, 45 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 4da83dbae3fc3aa11077b0b076ef07fb
e3130e287c3209eaa6b5886defc184b5be9d727d
3118a790537ecb98742528f637ce1bba8ea43985c98608185960b8b37edb2508
GET /style/prev-horizontal.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/carousel.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "429-61e036fb-dcb1c29dbc596d0e;;;"
accept-ranges: bytes
content-length: 1065
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/style/next-horizontal.png
193.178.43.195200 OK 1.0 kB URL HTTP/1.1 twojeloty.pl/style/next-horizontal.png
IP 193.178.43.195:0
File type PNG image data, 45 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash f3f386e48953908b6b754de07236e44a
b6495ea53cbf9a3da4f1b542e6caf91f84cc59a9
7ab69fb5f4381baf599392f3eefae452500dfea1cae7c578815aacb7870bc622
GET /style/next-horizontal.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/carousel.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "414-61e036fb-5844cf90272814e0;;;"
accept-ranges: bytes
content-length: 1044
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/logostour.png
193.178.43.195200 OK 12 kB URL HTTP/1.1 twojeloty.pl/img/slider/logostour.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 3cea44eb558195c1acfda6ec3250bb37
17e7447ddb750ef2adb65c535ae234093207bf1d
a80b593fc2a5ab52e351f5dd4ef36d7c6b9c3ddf7510e3c5a673e2675f996413
GET /img/slider/logostour.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "2d94-61e036f9-ce87e99baf12eb23;;;"
accept-ranges: bytes
content-length: 11668
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/abdar.png
193.178.43.195200 OK 7.9 kB URL HTTP/1.1 twojeloty.pl/img/slider/abdar.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash b65418aa1a56310788b69b6095e57271
9d934f47ac381a4e66d4888e9a4a26475de7e677
d4b1db1778c11bd59babbdef40b1a4a220f06a97c4795ec983206f19da52e4dd
GET /img/slider/abdar.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1eec-61e036f9-4c31f24d273ce3f;;;"
accept-ranges: bytes
content-length: 7916
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c59d06092401e375df491b06ee8e6dbc
2e27b8ff7c08a5349e27969bc2a08e5e19d0c1da
23ee4ab633fcf67dc5d4d1931450e365cec8d436ef1f9ba5f46b6bab974724c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5903
Cache-Control: max-age=94420
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 08:31:32 GMT
Etag: "636b6da9-1d7"
Expires: Fri, 11 Nov 2022 10:45:12 GMT
Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
twojeloty.pl/img/slider/2ways.png
193.178.43.195200 OK 3.3 kB URL HTTP/1.1 twojeloty.pl/img/slider/2ways.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fecf6449229e2ef53c98d8a99b1d37e
1ebac5e2c9ab28e3ce735e12cbd4579fd29344af
1005ebf1f7a083f8b1eea2725a6bb9eb32a60aeb2b88b158da741bb830c4116a
GET /img/slider/2ways.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "cfd-61e036f9-22faf90b44c9d2c6;;;"
accept-ranges: bytes
content-length: 3325
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/Logo-Net-Holiday-RGB.jpg
193.178.43.195200 OK 18 kB URL HTTP/1.1 twojeloty.pl/img/slider/Logo-Net-Holiday-RGB.jpg
IP 193.178.43.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1673, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1673], baseline, precision 8, 70x70, components 3\012- data
Hash 228f6d36ed6c9f726180f852934609f7
5d80b5db5292f06f4942c6247e5731fa123d0866
addb4d50c62fb021c5f6eaf6cb65105c1696c36ea3a888de43a5121344932a47
GET /img/slider/Logo-Net-Holiday-RGB.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "469e-61e036f9-ed54930873921611;;;"
accept-ranges: bytes
content-length: 18078
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/amadeus.png
193.178.43.195200 OK 16 kB URL HTTP/1.1 twojeloty.pl/img/slider/amadeus.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash aa1b026a453cf2f3c92d746f959128d5
0f5548fde21eabdc7c9be16827aee98da7048589
44ae0b1a580cee3d49d224b142baf73f4df14046d585fa18ed5e180eec4475aa
GET /img/slider/amadeus.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "3f8b-61e036f9-e91d2fcc35f9fa1;;;"
accept-ranges: bytes
content-length: 16267
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/top_bgrepeat.jpg
193.178.43.195200 OK 49 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/top_bgrepeat.jpg
IP 193.178.43.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:08:16 10:32:14], baseline, precision 8, 291x492, components 3\012- data
Hash c7f2e878420a08bf6687267ffe6ef177
4404502437ef3630f86874c181ce56447cb81fb1
fd5df88e2514119217b8c2e55cea9a37a78ba849ee12c9e91fa8223685179f62
GET /layouts/1006/img/top_bgrepeat.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "bedd-61e036fb-52234bc387702bd7;;;"
accept-ranges: bytes
content-length: 48861
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/volaretravel.png
193.178.43.195200 OK 7.7 kB URL HTTP/1.1 twojeloty.pl/img/slider/volaretravel.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 76ac0888a520e716dffbf613d9094fbd
de6dfdfd852c6f1bc8e9fe216b0868b450685102
95f6e56ed0b6e888f181fbab47c889dded40bdd0313cea19e3a7db1463f08bc7
GET /img/slider/volaretravel.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1e38-61e036f9-a11a49892ebb6781;;;"
accept-ranges: bytes
content-length: 7736
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/eccotravel.png
193.178.43.195200 OK 6.8 kB URL HTTP/1.1 twojeloty.pl/img/slider/eccotravel.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 0eeab83409c90495aff72d879203fdb8
59128a4debcc2289e8195289201a2890fd5a5eb7
1d1ca4201954276c057190c058272165b19c3ca3b464ea3ae0c6cb7f3ffb1ef4
GET /img/slider/eccotravel.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1aa9-61e036f9-81b81e1e25ba518a;;;"
accept-ranges: bytes
content-length: 6825
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/slider/yobboo.png
193.178.43.195200 OK 5.3 kB URL HTTP/1.1 twojeloty.pl/img/slider/yobboo.png
IP 193.178.43.195:0
File type PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash a8bb142635cc8faab4f0135f34fe55b0
7a31f9ba92175908666d23b88909234a8dd971f5
2c1407ad08a2b1e8f5b26a82b530f4701533486d61ade53c757f0f3e5bac41f3
GET /img/slider/yobboo.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "149d-61e036f9-3319ad1b7d357f6a;;;"
accept-ranges: bytes
content-length: 5277
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/images/camera_skins.png
193.178.43.195200 OK 24 kB URL HTTP/1.1 twojeloty.pl/images/camera_skins.png
IP 193.178.43.195:0
File type PNG image data, 220 x 1280, 8-bit/color RGBA, non-interlaced\012- data
Hash 44234b21bebe6b318aab47d9e9bbbee9
4e04ceab44860e1863ee24b83cb77750920b2638
a99f5a6bab7efec1d87835d754900adffe01497c407a8749fec13456a3f5baa2
GET /images/camera_skins.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/camera.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:08 GMT
etag: "5e86-61e036f8-55260bfc0aaa505a;;;"
accept-ranges: bytes
content-length: 24198
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/img/facebook.png
193.178.43.195200 OK 3.3 kB URL HTTP/1.1 twojeloty.pl/img/facebook.png
IP 193.178.43.195:0
File type PNG image data, 120 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash f999ddf2bff13e52bda595c211c18e6f
8d5148771b7eabebcd54fc65f06c76ecdb7191dd
7a88e708b9d2ab4659d3c0de918e08ca9b198b91984015efed09e625dbd45516
GET /img/facebook.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/fb.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "cea-61e036f9-ad7dfa3ab9bf9499;;;"
accept-ranges: bytes
content-length: 3306
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/layouts/1006/img/topbg.jpg
193.178.43.195200 OK 110 kB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/topbg.jpg
IP 193.178.43.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:12:18 14:35:34], baseline, precision 8, 2089x581, components 3\012- data
Size 110 kB (110273 bytes)
Hash 38719f128cf2c824bd6bbce00c12bd1e
4c4fdf5c6914d5284e4590e92f7046f65d3ae36c
9b78e150e8edf02caebc53c8087feee5bbc2e115f83511fc87535cb4ed8386a1
GET /layouts/1006/img/topbg.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "1aec1-61e036fb-313879f07231689f;;;"
accept-ranges: bytes
content-length: 110273
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/clients/104/img/slider/slider_34f894c16e334b20c0da3d61a56ce631.jpg?1668069088430
193.178.43.195200 OK 41 kB URL HTTP/1.1 twojeloty.pl/clients/104/img/slider/slider_34f894c16e334b20c0da3d61a56ce631.jpg?1668069088430
IP 193.178.43.195:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 307x352, components 3\012- data
Hash 4ec5865c99a4f5691df0ad62027b612c
cc64fc6ae24c7fd3256c9f498af350dabc842dc4
41b9c20706bd7a71c386afa4de46e488059cf09e90365000cf3bebaa804e5fc0
Analyzer Verdict Alert fortinet Phishing
GET /clients/104/img/slider/slider_34f894c16e334b20c0da3d61a56ce631.jpg?1668069088430 HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "a18d-61e036ee-3de7ed5564b1c1ba;;;"
accept-ranges: bytes
content-length: 41357
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
twojeloty.pl/clients/104/img/slider/slider_2ad0cb49f55637a85c5b8486ed80f023.jpg?1668069089050
193.178.43.195200 OK 32 kB URL HTTP/1.1 twojeloty.pl/clients/104/img/slider/slider_2ad0cb49f55637a85c5b8486ed80f023.jpg?1668069089050
IP 193.178.43.195:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 307x352, components 3\012- data
Hash 4a18a6cb8262a746767f3bb1148047f3
5f6c30bf2dfa1200e7cf999922e03e935b56c093
8c49402fefd9d3a740efd0d0bd57b63bb5ceda1b1f6c5b7637a5ee9f36f9ff0c
Analyzer Verdict Alert fortinet Phishing
GET /clients/104/img/slider/slider_2ad0cb49f55637a85c5b8486ed80f023.jpg?1668069089050 HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "7b12-61e036ee-1a4956622a55b3a;;;"
accept-ranges: bytes
content-length: 31506
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xV1946CfvM2C+v1WqRTtrw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4qswyn72nbOIIY4xYRQVm/189Y8=
connect.facebook.net/pl_PL/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/pl_PL/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 4ca89e7c7ff8f05b8a9667180c92385a
b2523acc2e0c0b05943057f64611183dd5400549
e4ce9d1fc8a8d6341b93772c453aba5fc6ce00d90622babd6d6a4d1fe26a6eeb
GET /pl_PL/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 2758072c09f0c99eef7f3c8571565f01
ETag: "fdd8627c223950fe5f841b330207724d"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Thu, 10 Nov 2022 08:49:25 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: TKiefH/48FuKlmcYDJI4Wg==
X-FB-Debug: cK/c+OCYEAXOj6t4YVcJ/h+Dz/eQrT1cg66eijRx0KkFrV9IOZgwRVqmDi0vMEV1ApD5K7Sxte0EAG1Mv/hOjA==
X-FB-TRIP-ID: 1904183273
Date: Thu, 10 Nov 2022 08:31:32 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1688
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Thu, 10 Nov 2022 08:22:37 GMT
Expires: Thu, 10 Nov 2022 10:22:37 GMT
Cache-Control: public, max-age=7200
Age: 535
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
twojeloty.pl/clients/104/img/favicon_9afaa70fb42bf8f026c5012594eacdf9.ico
193.178.43.195200 OK 560 B URL HTTP/1.1 twojeloty.pl/clients/104/img/favicon_9afaa70fb42bf8f026c5012594eacdf9.ico
IP 193.178.43.195:0
File type MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Hash 1a089e2f8ee4bcbed60097b041f224f2
1942e754a0f1fa2acf6727f722e78b105ec929cd
ea9bef9d7f79267b1e8e23948a174a8c7130f570e6b7dfe4e8e6b0abf841173d
Analyzer Verdict Alert fortinet Phishing
GET /clients/104/img/favicon_9afaa70fb42bf8f026c5012594eacdf9.ico HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/x-icon
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "37e-61e036ee-190359c216b5e049;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 560
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
twojeloty.pl/layouts/1006/img/bottombg.png
193.178.43.195200 OK 1.4 MB URL HTTP/1.1 twojeloty.pl/layouts/1006/img/bottombg.png
IP 193.178.43.195:0
File type PNG image data, 2580 x 380, 8-bit/color RGBA, non-interlaced\012- data
Size 1.4 MB (1396189 bytes)
Hash b6dfe2fc83bd6d6205f529ae1b18bf93
38097b84f28461b3d0f7234e0a954b65da89aef8
b681d786e41ecaaf96305406b436620c39b2b54d71d4f8ba295b1c5ce02724f9
GET /layouts/1006/img/bottombg.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:32 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "154ddd-61e036fb-3a7a3a9ed8ca174d;;;"
accept-ranges: bytes
content-length: 1396189
date: Thu, 10 Nov 2022 08:31:32 GMT
server: LiteSpeed
vary: User-Agent
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c282fb89bdded9707f257751f23fc185
bfe872622a162e0afa35c9cd45742fba2fb15b13
3e66dbf4d736534ca78c1e386311a188e985a015e284a5659213b3b528e7cbc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3533
Cache-Control: max-age=113636
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 08:31:33 GMT
Etag: "636bc1fc-1d7"
Expires: Fri, 11 Nov 2022 16:05:29 GMT
Last-Modified: Wed, 09 Nov 2022 15:06:36 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 08:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/pl_PL/all.js?hash=b3e056d762d9fd2539757f522f2f6410
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/pl_PL/all.js?hash=b3e056d762d9fd2539757f522f2f6410
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash a5aeaf01a5e6e96fc0ce4411b41b7054
8d51509c067029fd384de0299b7e2b2846556a6b
3cfdb31c4c76932a4efe3b09acfe331910c1cbfd185a62ee0b5351c956d1fca2
GET /pl_PL/all.js?hash=b3e056d762d9fd2539757f522f2f6410 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://twojeloty.pl
Connection: keep-alive
Referer: http://twojeloty.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8ae814a53a67701b5b1d3538d2dab2b6
etag: "c573c012eef1d1a18bb15b783d6746bb"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 10 Nov 2023 07:39:19 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: pa6vAaXm6W/AzkQRtBtwVA==
x-fb-debug: sRG7btKDnfd9G9ERdmJt10GF1Zd9oC1aD8bQg6FcsJgZydCeIAkBwRboueKE4jbDZxNPb3QxwAxgwrRjr18wZg==
content-length: 88363
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1754653822&t=pageview&_s=1&dl=http%3A%2F%2Ftwojeloty.pl%2F&ul=en-us&de=UTF-8&dt=Twojeloty.pl%20-%20Tanie%20bilety%20lotnicze%2C%20promocyjne%20ceny.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=2082211865&gjid=1280215402&cid=1385023095.1668069089&tid=UA-44718283-1&_gid=2082600751.1668069089&_r=1&_slc=1&z=1117542856
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1754653822&t=pageview&_s=1&dl=http%3A%2F%2Ftwojeloty.pl%2F&ul=en-us&de=UTF-8&dt=Twojeloty.pl%20-%20Tanie%20bilety%20lotnicze%2C%20promocyjne%20ceny.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=2082211865&gjid=1280215402&cid=1385023095.1668069089&tid=UA-44718283-1&_gid=2082600751.1668069089&_r=1&_slc=1&z=1117542856
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=1754653822&t=pageview&_s=1&dl=http%3A%2F%2Ftwojeloty.pl%2F&ul=en-us&de=UTF-8&dt=Twojeloty.pl%20-%20Tanie%20bilety%20lotnicze%2C%20promocyjne%20ceny.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=2082211865&gjid=1280215402&cid=1385023095.1668069089&tid=UA-44718283-1&_gid=2082600751.1668069089&_r=1&_slc=1&z=1117542856 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://twojeloty.pl
Connection: keep-alive
Referer: http://twojeloty.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://twojeloty.pl
date: Thu, 10 Nov 2022 08:31:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 08:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/x/oauth/status?client_id=230993897025745&input_token&origin=1&redirect_uri=http%3A%2F%2Ftwojeloty.pl%2F&sdk=joey&wants_cookie_data=false
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=230993897025745&input_token&origin=1&redirect_uri=http%3A%2F%2Ftwojeloty.pl%2F&sdk=joey&wants_cookie_data=false
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=230993897025745&input_token&origin=1&redirect_uri=http%3A%2F%2Ftwojeloty.pl%2F&sdk=joey&wants_cookie_data=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://twojeloty.pl/
Origin: http://twojeloty.pl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: http://twojeloty.pl
fb-s: unknown
fb-error-description: "This endpoint may only be called from an HTTPS Origin."
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
strict-transport-security: max-age=15552000; preload
x-fb-debug: 6DGKgbKl9nk855Ejx4DN+S5G/Sp5XzWkdsekGRhCGHXFjkE922DBWplMUx5f61QtU53KRizoJvKaGMDa13XTmg==
content-length: 0
date: Thu, 10 Nov 2022 08:31:33 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10759
Expires: Thu, 10 Nov 2022 11:30:53 GMT
Date: Thu, 10 Nov 2022 08:31:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10759
Expires: Thu, 10 Nov 2022 11:30:53 GMT
Date: Thu, 10 Nov 2022 08:31:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10759
Expires: Thu, 10 Nov 2022 11:30:53 GMT
Date: Thu, 10 Nov 2022 08:31:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10759
Expires: Thu, 10 Nov 2022 11:30:53 GMT
Date: Thu, 10 Nov 2022 08:31:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10759
Expires: Thu, 10 Nov 2022 11:30:53 GMT
Date: Thu, 10 Nov 2022 08:31:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca824564-f412-4dc2-b493-0624bc480eed.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca824564-f412-4dc2-b493-0624bc480eed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c390c15d10148f43af21450af434cc7
ef3011cd851559ba8ee39b4bd0dc0af7a25bc651
d76ceb9b671f98d0bbaa47544883108274d4a26c11840f628e7466b23ca541c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca824564-f412-4dc2-b493-0624bc480eed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7696
x-amzn-requestid: e0cf148f-08b1-4399-b07c-5519d852c486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmHfFepIAMFebw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d62-57d6f0964bceb9711a56cfb7;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q332Vdi1jyNfDnwszgERBrjmfPxvvz-EnsLImaK_W7-FdZUlbZw0nA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:53:01 GMT
etag: "ef3011cd851559ba8ee39b4bd0dc0af7a25bc651"
content-type: image/jpeg
age: 38313
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7edb51fa0fbe8bf317da2d9091b9e21b
02a9b9bec9d4392bbbabb6cabb129c1fb12d01f6
80c9dd829626ec07aa750aa3154eaf27ef79de25d3181e020a13bc9f8e9d8676
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5314
x-amzn-requestid: ad6e7919-c033-4361-8e3d-0badbb9f6fc7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWnb0GTrIAMF4xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1f7e-0524b86652bbacde023deb2a;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bau3xXgpMJavWBFqC_X7hBaA4UZHRKrwlFW_uyimScF0nqfzFRc-gg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:56:35 GMT
age: 38099
etag: "02a9b9bec9d4392bbbabb6cabb129c1fb12d01f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aeb648ba8ff2bcbb363004559ced5b87
25c8230dc14cfc31d8660b8ea8a72f3ac881ea7e
3eb0d98cc52b574f7496061ab00d6276c7a83ca1be7b7974a932a7827a9dd4b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3319
x-amzn-requestid: 4720d817-e198-4cae-b14c-b78972e7dd05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkGdMIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-6c3edabf3f07e37951156122;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: WTHCOj9RuWRZz5CyXFFKfjGFuZyQY69EvrTlTHqs9WAImuFCLp4ZzQ==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:28 GMT
etag: "25c8230dc14cfc31d8660b8ea8a72f3ac881ea7e"
content-type: image/jpeg
age: 38706
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash feb275cc5fa7b13e70522cb76f001bbc
80ca9cf6cbbc73a884c3a839ace9a7aa191a8504
a5680637b55669355967b87fd4be4881a3e4dea746b7c420acf4dcb46b8a28de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8242
x-amzn-requestid: 1ab9c180-7e6b-4eae-a6cf-6a45c96fdc4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkE_2oAMFk2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-0089846803d11bb649874507;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kZPJ95WwFXhxoBwZIeTN2iRl3-XFPmooKSeFtLu3wIm4b8nabFY2mA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:29 GMT
etag: "80ca9cf6cbbc73a884c3a839ace9a7aa191a8504"
content-type: image/jpeg
age: 38705
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61e5641a-68af-473c-af88-cf2c9e3c69d5.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61e5641a-68af-473c-af88-cf2c9e3c69d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d398b5d30ea461015a3abba3b028ef97
9036a9a8a0904abf68a8f6046505a806c840e056
2cf47136f257e9484ea11928b181976c4961a58b95020d1abb8e68d280099931
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61e5641a-68af-473c-af88-cf2c9e3c69d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: 8c503d98-3659-40e7-9337-9f02502e9536
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniH4YoAMFfBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-6feb60720a37636e21e1be8f;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BCrex9BLIjqBvqO2vWb93rNfP73MDM4zF-zB4ng9fJwmWbDaPgFu_Q==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:42:11 GMT
age: 38963
etag: "9036a9a8a0904abf68a8f6046505a806c840e056"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y5MD-207EEHTD7hC8z0SzYCHA0JdOpYRrUhYDwo0cQ9ITGRbtQ-McA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:28 GMT
age: 38706
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yE/l/0,cross/30Lp9AQzPc2.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yE/l/0,cross/30Lp9AQzPc2.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type assembler source, ASCII text, with very long lines (2642)
Hash f2ee10a25df1c49241dd4af7641219bf
7596b32f88f1ed6197e673cf221699244700fc23
e9fa52b3efb627da88dbe9710658bbb92863d8631c6419baee57df1efeaa0b89
GET /rsrc.php/v3/yE/l/0,cross/30Lp9AQzPc2.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 20:49:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 8u4Qol3xxJJB3Ur3ZBIZvw==
x-fb-debug: ymWqJ1PYFxPrJLEk7X5SBU9fP+1hjRDnTY/0F4VPr8BduCOX+VGHkEUWMPx+86f3iQdC4zWxWoG+0W/SxhZlTw==
priority: u=2
content-length: 4960
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/evgLweG1KIF.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/evgLweG1KIF.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash d8534aa0573be1f6ab5fe8a274b80fbb
4f5caa252a1376b88fdb5e55a80d266b173779d0
6af43fe29243080a4f646fe40b47e36e65aa304d59dbe0faa8777fe436fa5e1d
GET /rsrc.php/v3/yi/l/0,cross/evgLweG1KIF.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 20:44:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 2FNKoFc74farX+iidLgPuw==
x-fb-debug: GLL5Dqpe9YGVkAX8iC+UD5tml8yd00Qvkk7a4YS+/skftzN4CdM6iWBF0PVqQd4N+2vjkrBkujKxA5+2WL8A4Q==
priority: u=2
content-length: 5106
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 27 Oct 2023 19:33:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: g4bcggfqaqB6Bja//OmajfUrx0iD2yV41F2rYNqDegICxI5i6HgojQBI/xCVMRSxvmDHzQHeNxDWlSGFOXronA==
content-length: 827
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y_/l/0,cross/MC2tUExv7W_.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 4.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y_/l/0,cross/MC2tUExv7W_.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (10262)
Hash 885fef28bd0c7a25f03828c4387ebf6f
50f16dba096779ebc358771e84d2a68f68bc5363
f3e6692eaf9a447f638f0c9036c4da552d48671325a9f5855c067df65e19f604
GET /rsrc.php/v3/y_/l/0,cross/MC2tUExv7W_.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 20:06:26 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iF/vKL0MeiXwOCjEOH6/bw==
x-fb-debug: UgqGYwm8DjhGVsDGYgy9eJtN/1suOEnjA1qskozgyHOJjNTDmYhdvDl1j85PIO21dDnRWkbGPtUP6wAVU+jEVw==
priority: u=2
content-length: 4427
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/WNuD0ewp6xQ.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/r/WNuD0ewp6xQ.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18630)
Hash 2735f6f13ab0e68d5d21650e8d76d90d
fac3c804bd2c335c0c6aa615a0f6bd9197d5ed87
1744afaa9fc41238e9cfa2073844a8c1ed9c80093e5f1555fc93acfbec268b5d
GET /rsrc.php/v3/yM/r/WNuD0ewp6xQ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 08 Nov 2023 01:32:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: JzX28Tqw5o1dIWUOjXbZDQ==
x-fb-debug: bC5+aa5Je0InC3pf1rVrCdTR4TP6lFHLdvrsN0ce1Cc3jv3cHGvzYTQToVx8+qOeVfHGmJ0JfNlleTuHo1Q+uQ==
content-length: 91137
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5542)
Hash 0765d76d746716156d53d36ee6f80836
17e1546f87cc6417615caa10dcbbcb699c59471a
f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 08 Nov 2023 14:58:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: D5GS3x6wx04rycniYZY/0Xz+ksXYSSm92jqaYBfwJdNE2gVWZsHNSKS1Na1e4Jf9SQ8Wn6qjKZVunFivJgncuw==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y_/r/wTglN12iuj9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y_/r/wTglN12iuj9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (10494)
Hash 7a251324c979f281c33a391e28e632b5
d923ec35e14b92409ad05bed1ff3a018a10edb4e
3508e37a9692eac38f87221db9769070a336586c499a49c80b1b6fdf2d111c58
GET /rsrc.php/v3/y_/r/wTglN12iuj9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 02:00:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: eiUTJMl58oHDOjkeKOYytQ==
x-fb-debug: Qwaa81rXokHbAW3EuWOSCkP5mUbIWvd2ZhX3Of/Xa+DHsfFqPP9QEvudtR9QLn/Zr2+tIORPPM7uPI52hg9tiQ==
priority: u=3,i
content-length: 8632
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y-/r/EKwmV8fAj1M.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y-/r/EKwmV8fAj1M.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 8cd92cd2c236abbaa637f47b52ddcebb
bbfe26af99f45a792d24df8ea422a2da3f390628
95ea7851eb2f837b314ba57821ad71feae24cf383137728176114a21267cd07e
GET /rsrc.php/v3/y-/r/EKwmV8fAj1M.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 16:17:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: jNks0sI2q7qmN/R7Ut3Ouw==
x-fb-debug: 9W2bKyuOwpHNOS8Gt9+B7/tmQ0oVz76GrfCoqdV3eP32NHNLFtaffEQg4t1/YYY4YvyiN07GtaAJTfGbAji23g==
priority: u=3,i
content-length: 1807
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 27 Oct 2023 20:08:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: C8ru5zkRydgvHeANSR5CCnJiMJOKT/Cn1D/peSgWNQK5UFwPIyoKe+MHTJeZ5YMaL9iMR1r/NPoYeX9Euxr11g==
priority: u=3,i
content-length: 338
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yl/r/SuHirPIqipH.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yl/r/SuHirPIqipH.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (9885)
Hash 0eaa197a5c011011e1489f411b042249
9ba134dd641bbbc6ce70619ccd94f5d5ef47a899
145cfec975ec864e6589409173f8f9fee2a59faf0ce28c42889897e812ab9ac4
GET /rsrc.php/v3/yl/r/SuHirPIqipH.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 31 Oct 2023 20:10:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: DqoZelwBEBHhSJ9BGwQiSQ==
x-fb-debug: yFSTPf9aHCGcyulbBG2ye1uEtO6uRbNdzUijFwGA9MyDesJEtfw60dXhmic10Dug+H1qEox4CIVne1nj6DcCzg==
content-length: 8222
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/ojzICpVg5Kb.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/ojzICpVg5Kb.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8749)
Hash c2b0fc32b893b1c243b3a27bcc5799cd
a9a85686e79bf7bba56cf1a7883b89447096eb54
f84f8dc2511cfbed3abe4ae7dd9c8e02c02260e0824eddaf69f2d54f3994a726
GET /rsrc.php/v3/ys/r/ojzICpVg5Kb.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 05 Nov 2023 03:23:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: wrD8MriTscJDs6J7zFeZzQ==
x-fb-debug: ZeaG4nczRFV9qJrZM59ZmYklxtldDRvk75b6fH34gkz1gMCEFsaTtetQwAT3aF82JRPYbxFDD5vVyCK2+3MHGg==
priority: u=3,i
content-length: 16259
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iOuX4/yO/l/pl_PL/9ceEMw7kTfT.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iOuX4/yO/l/pl_PL/9ceEMw7kTfT.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2905)
Hash f5d0433934dbd9b54c4ab8ea40c928b5
f98d07eb5e04a739f7a965889f4ac9d0d365992e
2dc0c8845592691706a6c77e1bc294416b5705f182ff119452ae58e723ee9e7e
GET /rsrc.php/v3iOuX4/yO/l/pl_PL/9ceEMw7kTfT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 17:17:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 9dBDOTTb2bVMSrjqQMkotQ==
x-fb-debug: /01lXuqEtQ8ULUgVgqgYB8KkcM7KR+Mj9vuokCUJrEjCjDEqLetVIwrLzKPV8KeqjCP87+vp6I14adkrUEHVeg==
priority: u=3,i
content-length: 7100
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y5/r/sDdqCaJ5A6D.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y5/r/sDdqCaJ5A6D.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (15785)
Hash 6432043d7330bf4ddd0ae10b06de64ae
b1ca5d41a89417e6181ed0b804a00f43ffe023f4
cf5ef73c846b5c357d41418c7026e6525c378d5c51b59de4ee8099d779e72c53
GET /rsrc.php/v3/y5/r/sDdqCaJ5A6D.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 04:41:16 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZDIEPXMwv03dCuELBt5krg==
x-fb-debug: tzs/c+KqVIGZgnBeVuGgltSInolPY4/l7u4Ig7wGanm2qhuNueYb45tMw9TPGuoMeyds5aFaTfDjrN9ufFXwEw==
content-length: 16297
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/Y1Vj4wvi23s.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 3.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/Y1Vj4wvi23s.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4488)
Hash 64e49c34f30d6183fd9c5f6cee967f5c
9197478fcdda35e040fa7e6190b7427e11b535df
a95c113c157591cafb76092d133d210d56f0446432d572eb1a1160c024bfeb54
GET /rsrc.php/v3/y6/r/Y1Vj4wvi23s.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 03:05:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZOScNPMNYYP9nF9s7pZ/XA==
x-fb-debug: XMj8Yma38+IVGm3NTsUEfLOv1s7bFyeiFB3HEYDPs4j64bvN4OCQWc05teqByOm5BAIWL1A0wdPdcSB2Q4ql1Q==
priority: u=3,i
content-length: 3827
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yA/r/qZwIteX5V60.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yA/r/qZwIteX5V60.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4651)
Hash 7f8b41e8097ef3308927a021bd76eb60
c2845b99fd5b42a0a82e0befec4b3afdbf111695
761b8d2bdf28ab889ddacdffc08fb9bccd0ee7e0ec30510782470eacbe995757
GET /rsrc.php/v3/yA/r/qZwIteX5V60.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 07 Nov 2023 22:13:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: f4tB6Al+8zCJJ6AhvXbrYA==
x-fb-debug: Q/Eofp95ezapvJ55k8Jt5WWsFmQOesgES3ITqIaxkD7qlCCsL6AKBkviO7tE00bQx0s0Pvwjp8Wj5zeJco+7dA==
priority: u=3,i
content-length: 7946
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1491)
Hash e0e53f8b49bf0ffb37c775b9c288a5c2
ade21104d506e6c9d4946e1afc9b88d80da7333c
5aa28d70ec74ee4b45e03fb453bb4adc23da65fbeb93c581411f0076b1444eb0
GET /rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 03:30:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4OU/i0m/D/s3x3W5woilwg==
x-fb-debug: 5jVxdpmP6OuCqV1mjWPxV9f+AJNon+z21EI7YFGVc9r35FoKsEgHmiaqWf/ZYGHhdLRIbWAuUby/D7TGWYUYeg==
content-length: 1286
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 02 Nov 2023 18:54:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: nETVm4WUsTBjWzPPz30+NcQ/dUZibWclH+7BC3skx38X1frzgZPa413yNFDo1GF9yx7utvfMwnrRvZAKq6brWw==
content-length: 7236
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 6.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5962)
Hash cc378867ee76685b694fb1039ff7944d
792edc57eb23dde2a37f1a71fa0ae7e4ef9c2b0f
862fdd82421a58b68bc7b95eba6a467403ef6e62a752fddb048a4ec18cc2c898
GET /rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 19:15:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: zDeIZ+52aFtpT7EDn/eUTQ==
x-fb-debug: WY2fd9ClgmlwnhCvlT6jSAnmVkt13mrDdE+6CYhR3ZwFmcTlX1HZGlCq621cDu6qBmb5FheAbxwxVAGblWWJmQ==
priority: u=3,i
content-length: 6752
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/images/emoji.php/v9/t51/1/16/1f603.png
31.13.72.12200 OK 505 B URL HTTP/2 static.xx.fbcdn.net/images/emoji.php/v9/t51/1/16/1f603.png
IP 31.13.72.12:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash d2150a7921d060cb771e7707111778b0
3c2d0019a91698c6ecc22a54df40e76d7210feb9
7c8a69481a93d4998851e516683a3bc1afbb7164bc18a903230a0eed3c16d88d
GET /images/emoji.php/v9/t51/1/16/1f603.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 0hUKeSHQYMt3HncHERd4sA==
expires: Sun, 29 Oct 2023 04:25:08 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
x-content-type-options: nosniff
timing-allow-origin: *
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: zmPbTLM5ADfHeozfqLiiiQHMruttt6sdKlwyDEFtBFhliA5jE9mJUctZbWj/UU/yHw2KCC6nDVxmoNm431PiEQ==
content-length: 505
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfdc85e83b6865%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff243995449707e%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300
31.13.72.36200 OK 30 kB URL HTTP/2 www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfdc85e83b6865%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff243995449707e%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300
IP 31.13.72.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (56830)
Hash 95ae7101bc874490dd8326486b3f35c7
3b5e66953db633402bacfcfb52bd39ef459677ea
6c781b1b230a0fcde268c8c905ce4a484231d1379d701d508adab3ecb7c7ebd5
GET /plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfdc85e83b6865%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff243995449707e%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://twojeloty.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: mL3ukQuPoaKs68vNqgOXf4VTxT3CYDcc4xSs/+t2btMg9jI4qL3mskIQxkV7wRUBRFWdbEZMwpF4hV74cCaZ/w==
date: Thu, 10 Nov 2022 08:31:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/W4K931S7ojS.png
31.13.72.12200 OK 474 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/W4K931S7ojS.png
IP 31.13.72.12:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 11f647a26941dbd5bbb8abe00b21827e
9d2537640a392ba472911826e264a9ae6bb4e333
b9e43fde12d87229069da2db686729881cf0b43a99d0de1f6c8a2f89fdc82714
GET /rsrc.php/v3/yV/r/W4K931S7ojS.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: EfZHomlB29W7uKvgCyGCfg==
expires: Thu, 02 Nov 2023 23:39:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: 5QLSehhBSMYRf1I0W544h3exg/tXHxikQ4Gla26z1BiQ3lvoLlE3uXLsO59gJenVdj0MtJq2Z0OgL7CBekFB7w==
content-length: 474
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/images/emoji.php/v9/t4c/1/16/1f642.png
31.13.72.12200 OK 480 B URL HTTP/2 static.xx.fbcdn.net/images/emoji.php/v9/t4c/1/16/1f642.png
IP 31.13.72.12:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash bd593830625290c781eaf9f691a5480a
1ffd5c2b32846ecf4a691e617f964eeaeb3124da
790febcf2123f481b536e9443d1843fb4fca516886c4df9ebbaa45c6c2e1f393
GET /images/emoji.php/v9/t4c/1/16/1f642.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: vVk4MGJSkMeB6vn2kaVICg==
expires: Sun, 29 Oct 2023 00:03:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
x-content-type-options: nosniff
timing-allow-origin: *
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: P6xizY7B3RbbMDvPCyluBHep7DNd0B1TiPZUIL0WKNNz5MOhEyiLeccGpgXfpXhZP0VJl7n3kBmvjF9bg3/vHg==
priority: u=3,i
content-length: 480
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/images/emoji.php/v9/t9f/1/16/1f61b.png
31.13.72.12200 OK 502 B URL HTTP/2 static.xx.fbcdn.net/images/emoji.php/v9/t9f/1/16/1f61b.png
IP 31.13.72.12:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash dc225c6fe598e1bf93f387a4de255f90
f91b62785fbf553ca17eaaf905695c3aff7253af
3925aa00c52f1cdbcc24e8e07738d60c23cb1aaa27d01a0c1dce412ff8a80794
GET /images/emoji.php/v9/t9f/1/16/1f61b.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 3CJcb+WY4b+T84ek3iVfkA==
expires: Thu, 02 Nov 2023 16:14:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
x-content-type-options: nosniff
timing-allow-origin: *
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: D6nGmVPPh8uoQciBSQwbDGAAJM0CJAvYoXAxIjXpVFOyKmTIN+265Ex/6UTUR8deZLKW2h1Ke5uvqhxOrI6+lg==
content-length: 502
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
twojeloty.pl/clients/104/img/slider/slider_0ce80938c9c19b6bee4741b60e472505.jpg?1668069095236
193.178.43.195200 OK 41 kB URL HTTP/1.1 twojeloty.pl/clients/104/img/slider/slider_0ce80938c9c19b6bee4741b60e472505.jpg?1668069095236
IP 193.178.43.195:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 307x352, components 3\012- data
Hash 0510f5feac87f13bddd02c19f9d72b9f
6c8b0c6679e8ee495284a515f1e94220f03078b1
d46906284736b93c43af1922e725505f73a8f911c6c56462253c169844d2488d
Analyzer Verdict Alert fortinet Phishing
GET /clients/104/img/slider/slider_0ce80938c9c19b6bee4741b60e472505.jpg?1668069095236 HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=02079795f9ef9a3bbeb9b860c820864d; _ga=GA1.2.1385023095.1668069089; _gid=GA1.2.2082600751.1668069089; _gat=1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 17 Nov 2022 08:31:39 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "a0e0-61e036ee-c11af6cc91a86b29;;;"
accept-ranges: bytes
content-length: 41184
date: Thu, 10 Nov 2022 08:31:39 GMT
server: LiteSpeed
vary: User-Agent
static.xx.fbcdn.net/rsrc.php/v3i7Kf4/yP/l/pl_PL/FelcvtA3NGC.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i7Kf4/yP/l/pl_PL/FelcvtA3NGC.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
GET /rsrc.php/v3i7Kf4/yP/l/pl_PL/FelcvtA3NGC.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 00:54:22 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: aJKejWmpwXhyXlCAtVj2pg==
x-fb-debug: rPgyYAKDojjHTHdHMA/mSiZtTKLovhJYxf8PR6HZyUfPY56vsi/fJPlsdtzXSL7kthne2xbKDIx7NHCWs1E6Ag==
content-length: 23383
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 08:31:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2