r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5359
Expires: Tue, 06 Sep 2022 06:24:32 GMT
Date: Tue, 06 Sep 2022 04:55:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 04:04:13 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gkNQ-uST8s3-eI9dFHDntV83OAFaSCsro97PJR1m0PBqOj2qR0L0Qw==
Age: 3060
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8Bv-YdXvJBjv91qaTAJliLkBb_9hg_NEYlkUSdED9YNjCtREFUQIWg==
age: 13196
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 04:38:18 GMT
Expires: Tue, 06 Sep 2022 05:30:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AmyE7p2JvubQb6ecH4NrWVcUA0o_7iIUm37ox0ETHn0zU9ETpytp9g==
Age: 1015
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3325
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:55:14 GMT
Last-Modified: Tue, 06 Sep 2022 03:59:49 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
fundacjarg.org.pl/
91.231.140.77301 Moved Permanently 1.2 kB IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type HTML document, ASCII text
Hash 97ec596cbca22f572971a4df226cd9a0
778565216b17e7985e2fd472fc0ddec9a1b58216
67610d4b95223f89a461d2b2592135550dc8325144476da30a53d106e57ef1d4
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Sep 2022 04:55:14 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1165
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=f8o62e4c20sho4d30hjh35t19r; path=/
pll_language=pl; expires=Wed, 06-Sep-2023 04:55:14 GMT; Max-Age=31536000; path=/; SameSite=Lax
Location: https://fundacjarg.org.pl/
X-Powered-By: PHP/7.4.30, PleskLin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8d3b3df3e3ccbcee72a346939667e07b
320ae620ae717a1e9b0043eacc888a0ae87c5e11
9f8ad33be14a6c86c0f20f172ca4d1dd8b99a817262c17b72d49ce86c749d93d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9F8AD33BE14A6C86C0F20F172CA4D1DD8B99A817262C17B72D49CE86C749D93D"
Last-Modified: Mon, 05 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Tue, 06 Sep 2022 10:54:39 GMT
Date: Tue, 06 Sep 2022 04:55:14 GMT
Connection: keep-alive
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OZHttnLpOCwaTfXPnXG+hw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j6NWArszQcDLkkYiUXTOG0gAqtI=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/rozlicz_online.png
91.231.140.77200 OK 9.9 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/rozlicz_online.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 240 x 85, 8-bit/color RGBA, interlaced\012- data
Hash cbd5139d87510427f7cb952c1c0c2cf9
de6deeb1f79d095e1a93d07f3c5b2a071ac9937b
e62f81487d678f71984e5af24fc536289846b1ddf5dcbb15c7b141396e7d0e37
GET /wp-content/themes/mediaphase-lite/img/rozlicz_online.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 9888
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-26a0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/procent1.png
91.231.140.77200 OK 23 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/procent1.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 483 x 85, 8-bit/color RGBA, interlaced\012- data
Hash e2f31a86aa0de9e7bd63fbaccad73a20
42dd40f74bae12435e046e86502a40188289d555
346c7c0e8d026cbf1342361e2bf25a6c7f599da44060e7e71999d0cb2b5ed634
GET /wp-content/themes/mediaphase-lite/img/procent1.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 23088
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-5a30"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/11/logo.png
91.231.140.77200 OK 40 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/11/logo.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 700 x 140, 8-bit/color RGB, interlaced\012- data
Hash 781d9a16b0cba5a21069f92fdbd676f8
827ad8187383b6cb970d12aab1cdb806627fb471
e9357e4a64ce52202832e61109aaf62910ad01410fd5a620ee6295131dd937b3
GET /wp-content/uploads/2016/11/logo.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 39586
last-modified: Mon, 23 Jan 2017 23:00:00 GMT
etag: "58868af0-9aa2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/wesprzyj_nas.png
91.231.140.77200 OK 14 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/wesprzyj_nas.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 325 x 80, 8-bit/color RGBA, interlaced\012- data
Hash 6c08d278000f280aac4fce71a697b9ce
10bfa1e3f9157bca7e357865dfc09dca66df0593
3784f93efca394190bb6c00f7c49b68f911769de077fd087e675d8e9ac076934
GET /wp-content/themes/mediaphase-lite/img/wesprzyj_nas.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 14235
last-modified: Thu, 10 May 2018 22:00:00 GMT
etag: "5af4c0e0-379b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/04/szermierka300.png
91.231.140.77200 OK 9.3 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/04/szermierka300.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 300 x 300, 8-bit/color RGBA, interlaced\012- data
Hash 6f5c2de7939388eba9288e75bb93dbd2
c4c5e576bfea35c1bd8c03a189800cf9985c6f31
5d89129fed9cdc6c31a2a5601836040fe7e5e3a516e17aaec81ad946143da1eb
GET /wp-content/uploads/2016/04/szermierka300.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 9264
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-2430"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/logo280.png
91.231.140.77200 OK 11 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/logo280.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 75 x 75, 8-bit/color RGBA, interlaced\012- data
Hash fa99147a916acd03ba950c1df8a26e75
a57381f62ef185da37426ee3d7a64d3a0bfeca62
7ae6966d43632d044405a667c9bc9316af204d7a622cc8b60bacf9d9b76c56c9
GET /wp-content/themes/mediaphase-lite/img/logo280.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 10916
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-2aa4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/04/fishing300.png
91.231.140.77200 OK 12 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/04/fishing300.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 300 x 300, 8-bit/color RGBA, interlaced\012- data
Hash e395cebeff47b8800ab0b451d635ba98
6a0db12d25a9a0cec57bf476c07a4c9056c83994
ea9804bc9c8482c32017e345ec4fe1a8e134475d1f80af2f6de2ad15c90e5e7c
GET /wp-content/uploads/2016/04/fishing300.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 12055
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-2f17"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/11/aktywna300.png
91.231.140.77200 OK 14 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/11/aktywna300.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 300 x 300, 8-bit/color RGBA, interlaced\012- data
Hash 9da4bb16b2a3d1fd2be0dcc7605e716f
627f07cbf5b3f710ca1e650e29416c0eda4617fc
944dac9597c2ad39cd30f16a15bcc36e7a9eb861783f24a135bec58e9992dc55
GET /wp-content/uploads/2016/11/aktywna300.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 13478
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-34a6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/bootstrap/js/bootstrap.min.js?ver=3.3.4
91.231.140.77200 OK 9.6 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/bootstrap/js/bootstrap.min.js?ver=3.3.4
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (32025), with CRLF line terminators
Hash 1b29faae33d48bed59977aa608a674c1
b2f51057218cdad24dff331e4994f9267b94a6a7
f068bb2fae4949e489247270c385a7e2bf86e26f29b051a7bed24505c5a41613
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/bootstrap/js/bootstrap.min.js?ver=3.3.4 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-8c75"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/11/dla_niedowidzacych.png
91.231.140.77200 OK 2.1 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/11/dla_niedowidzacych.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 50 x 113, 8-bit/color RGBA, interlaced\012- data
Hash 91d1e93d8250e1f3912e31671d230237
d544e86ebd654456768cfc72479a2a1da0cde2c2
61e5fc229d68731082c2954bff7ff6b666bca3b190c7d08bd66ace1b56239861
GET /wp-content/uploads/2016/11/dla_niedowidzacych.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 2062
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-80e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12646
Expires: Tue, 06 Sep 2022 08:26:01 GMT
Date: Tue, 06 Sep 2022 04:55:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12646
Expires: Tue, 06 Sep 2022 08:26:01 GMT
Date: Tue, 06 Sep 2022 04:55:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12646
Expires: Tue, 06 Sep 2022 08:26:01 GMT
Date: Tue, 06 Sep 2022 04:55:15 GMT
Connection: keep-alive
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/style.css?ver=6.0.2
91.231.140.77200 OK 16 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/style.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type Unicode text, UTF-8 text, with very long lines (1280), with CRLF line terminators
Hash b7acf546fd5856ea2cc58737226f4a3d
167cbc932120a3b4ae72305f7e604f63ea31b540
fd1f4185e5278e33726e4a33d6278f88557a866ace03ccf8ae8afccea8a2a776
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mediaphase-lite/style.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Fri, 11 Sep 2020 07:28:00 GMT
vary: Accept-Encoding
etag: W/"5f5b2700-f1ac"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
91.231.140.77200 OK 13 kB URL HTTP/2 fundacjarg.org.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (11126)
Hash 9e1d3cd28633637446726caeefd35a92
52719db98fc88e01737249cde43ba10e7657c7cd
52757a1b9d628ed5229c9769b41ef1cf574d1740ec5a931def5e6d9ba559a968
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 10:44:22 GMT
vary: Accept-Encoding
etag: W/"6315d306-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-includes/js/jquery/jquery.js?ver=3.6.0
91.231.140.77200 OK 87 kB URL HTTP/2 fundacjarg.org.pl/wp-includes/js/jquery/jquery.js?ver=3.6.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Hash 5ba9d6105b212d93bded75a9eb37d7e6
b6674ea9ec38d3a173c9a75b1f8dbf64692a3ce3
63cf6768d0d844f37b91fe35b6a633c8d24ec60da8fe9b8ef72e6b6e77e53899
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=3.6.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 10:44:22 GMT
vary: Accept-Encoding
etag: W/"6315d306-46758"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/css/jquery.selectbox.css?ver=1.3.1
91.231.140.77200 OK 6.6 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/css/jquery.selectbox.css?ver=1.3.1
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with CRLF line terminators
Hash e31ed5d21bced53230eb741328a03246
35d3df07fc4a67ea7d6bd2887325261c0c055e1f
5d9138b49f3e75080d05ce4231ba9d4e9aa6e21bb8ab9cfcdcc07f583a7082c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-form-builder-lite/css/jquery.selectbox.css?ver=1.3.1 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587d5070-81e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 05:19:01 GMT
age: 84974
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/smart-slider-3/library/media/dist/smartslider-frontend.min.js?1484521200
91.231.140.77200 OK 31 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/smart-slider-3/library/media/dist/smartslider-frontend.min.js?1484521200
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (32021)
Hash 50b65c6f75b9a16e53476fbd9bf42aa2
be72163ac033998d7b3a142c770e7dc86013f5f8
decf7b1c76d81da42695bb92501f5cd99d0d1cc456a5814383a80ed93a1581a0
GET /wp-content/plugins/smart-slider-3/library/media/dist/smartslider-frontend.min.js?1484521200 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-1b1aa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/magee-shortcodes.js?ver=1.6.0
91.231.140.77200 OK 4.7 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/magee-shortcodes.js?ver=1.6.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with CRLF line terminators
Hash d715f051a79b7c3be2564b0d004d3dfe
8feb6f4bc56bea94e25baeb21f69e34d918f9ef1
5ce55197d808b4da6870ff07a4a3d6d4960a499b4325829b92e06537ccce6da8
GET /wp-content/plugins/magee-shortcodes/assets/js/magee-shortcodes.js?ver=1.6.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-5f79"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/bootstrap/css/bootstrap.min.css?ver=3.3.4
91.231.140.77200 OK 18 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/bootstrap/css/bootstrap.min.css?ver=3.3.4
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (65371)
Hash c74b8ab08a9f5f9119cbecd6e77ae3a4
e1a55c03d7c7bff57d67494a28d3eeba2d8ccbcf
129a7c720119d36f26d3dbcb343a1ebda6d6a197d235b981db5b2b05e82af543
GET /wp-content/plugins/magee-shortcodes/assets/bootstrap/css/bootstrap.min.css?ver=3.3.4 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-1ca39"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/fonts/fontawesome-webfont.woff2?v=4.3.0
91.231.140.77200 OK 57 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mediaphase-lite/inc/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/css/font-awesome-4.3.0.min.css?ver=6.0.2
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: font/woff2
content-length: 56780
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-ddcc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/pobierz_program.png
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/img/pobierz_program.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/mediaphase-lite/img/pobierz_program.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 11667
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-2d93"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ed7d462c8cb040d903602b42c62d7cf5
eaeb56a7b4a254c0867b08071aad3980ae3de1d1
568623a6b176775b70045f51975f1966aa1a784761be407b0106502af5adb17c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "568623A6B176775B70045F51975F1966AA1A784761BE407B0106502AF5ADB17C"
Last-Modified: Mon, 05 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21580
Expires: Tue, 06 Sep 2022 10:54:55 GMT
Date: Tue, 06 Sep 2022 04:55:15 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C700%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext
142.250.74.10200 OK 3.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C700%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash 98d874493fc08c9fb6fcad479f739cfe
49e10981577f301831c61ae436d1f405b61c4e33
3a14fc018fe68442540f9dd1e13ef215424e5e06732d43470120df48a50888cd
GET /css?family=Roboto%3A300%2C400%2C700%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 04:55:15 GMT
date: Tue, 06 Sep 2022 04:55:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type gzip compressed data, max compression\012- data
Hash 1f8982730e52981cda8070e61aa1ee3e
6a00fad15be9a403e403ed17e72d9e9e4471e195
31aa7d67fc61d253bc11224ba1761b12957e661eb7efd6971919fc84fa8fc662
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fundacjarg.org.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 465667
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fundacjarg.org.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:35:48 GMT
expires: Thu, 31 Aug 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 465567
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/font-awesome/css/font-awesome.css?ver=4.4.0
91.231.140.77200 OK 22 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/font-awesome/css/font-awesome.css?ver=4.4.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash 099c0e4297e4e4f1830d8334d3c66ad2
7c5c1c4035edc8b4704916c39d4eeb5ed3e05997
d174e49d4b65cd7d71982d6d2f55e5e31680a5b4898c0afe74bd7e608701c488
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/font-awesome/css/font-awesome.css?ver=4.4.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-7e3e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14964, version 1.0\012- data
Hash 44b4e1e6aecc684d11fe7501dd36df19
59e2710168a0d6889a24eaaa5134114f7e258461
6b0b111ca14c2147a0f0cb51f1317290eb5ec19b4a9bea595a5ad7ffb7d9661a
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fundacjarg.org.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 22:47:34 GMT
expires: Wed, 30 Aug 2023 22:47:34 GMT
cache-control: public, max-age=31536000
age: 540461
last-modified: Tue, 19 Apr 2022 18:08:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 07869ddc8aa688fe8a93876ef1264055
636614db9c01c03fcc2d10f5f949b513e1a338c9
ab8f4fcf2e21b2e44d69d6e4a6478a7eb6cf8e451202c7dc2854ef68b8e91b2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6222
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:55:15 GMT
Last-Modified: Tue, 06 Sep 2022 03:11:34 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
fundacjarg.org.pl/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
91.231.140.77200 OK 30 kB URL HTTP/2 fundacjarg.org.pl/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (58024), with no line terminators
Hash 216a2e6aaa34f168641d3549397a5883
fed2d1d73508bfb3e06454a8433d3d5f7c4dd097
5dfb304957848cbbad50d1aaf4fefdfb3db1d38371c880c4bd4caf4864947721
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 10:44:22 GMT
vary: Accept-Encoding
etag: W/"6315d306-e2a8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/js/navigation.js?ver=20120206
91.231.140.77200 OK 16 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/js/navigation.js?ver=20120206
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Hash 966b2706651151b446946ea345bf7f7c
249bd79a7b24ff676b6c877aa200f367b3a3aa67
8af997dba44fb8abec1b989dd00b88e7e190e3957551fce4ed003de6c216c6c1
GET /wp-content/themes/mediaphase-lite/js/navigation.js?ver=20120206 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-919"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/wp-accessibility-helper/js/js.cookie.js
91.231.140.77200 OK 1.2 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/wp-accessibility-helper/js/js.cookie.js
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (2349), with no line terminators
Hash 5db62fa9ed16cd35c050a3e749bb46fc
33bdc2ecb63b2a7695c9e06c68f5d684f305a4db
322b649bdc246bc5e8a059b21a53ca04fb12374b4724471389417807f19cbda4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-accessibility-helper/js/js.cookie.js HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587d5070-92d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
platnosci.ngo.pl/Scripts/App/genscript.js
212.244.112.13200 OK 1.7 kB URL HTTP/1.1 platnosci.ngo.pl/Scripts/App/genscript.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 870a95c55242479218c29a0ae88f1562
2a9be74d593a05d36949b2d8a2eff9a193004436
8e132d06f8dac861ca71505b5a7a00332502de3f3cbf67358811684984569a10
GET /Scripts/App/genscript.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:14 GMT
Content-Length: 1693
fundacjarg.org.pl/wp-content/uploads/2021/03/33-300x220.jpg
91.231.140.77200 OK 17 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2021/03/33-300x220.jpg
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x220, components 3\012- data
Hash ea4ca9dc5b4ebbcd7a4c87e57117bab7
8938be92abce5a7ebc8b54d761d2453aef2ef522
aa9f72c8c18333581780d23480b589233f7ff3c87000e3ed85146ee2582bd583
GET /wp-content/uploads/2021/03/33-300x220.jpg HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/jpeg
content-length: 16810
last-modified: Tue, 16 Mar 2021 17:32:40 GMT
etag: "6050ebb8-41aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/css/font-awesome-4.3.0.min.css?ver=6.0.2
91.231.140.77200 OK 13 kB URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/css/font-awesome-4.3.0.min.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type troff or preprocessor input, ASCII text, with very long lines (374)
Hash 044fe913f487e8ed64dc12885c9306b9
c901abb74cb33586b06978cca472386fa25f1f77
06a951f11a60eb7e1c1a9308f4ced2ec622bfc3c1ab096c8c3b7c0d4d4166cfd
GET /wp-content/themes/mediaphase-lite/inc/css/font-awesome-4.3.0.min.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-7419"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2020/01/Ulotka_A6-1strona_ostateczna_bez-spad%C3%B3w-300x220.jpg
91.231.140.77200 OK 25 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2020/01/Ulotka_A6-1strona_ostateczna_bez-spad%C3%B3w-300x220.jpg
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x220, components 3\012- data
Hash 49d35cd900b6d04075ee4d0fa6542de5
7624d1e257e8fd22ff066934e024dce39b3f1a34
011768d23dd9ae267c8d17d3b1e49592252544229b31ee9baf813dd07a632857
GET /wp-content/uploads/2020/01/Ulotka_A6-1strona_ostateczna_bez-spad%C3%B3w-300x220.jpg HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/jpeg
content-length: 25444
last-modified: Tue, 21 Jan 2020 23:00:00 GMT
etag: "5e278270-6364"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fundacjarg.org.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:06:20 GMT
expires: Fri, 01 Sep 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 427735
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2019/12/DSC_0287-e1576714040633-300x220.jpg
91.231.140.77200 OK 22 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2019/12/DSC_0287-e1576714040633-300x220.jpg
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x220, components 3\012- data
Hash 828412f27b34c08bc3620df823d427df
763f71d6498499d34f9877555d7c2a4b1346dd8a
ba07059e0cbe666f9b38800a652c653ae4979909989726c8e5f0a484b076bccd
GET /wp-content/uploads/2019/12/DSC_0287-e1576714040633-300x220.jpg HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/jpeg
content-length: 21635
last-modified: Wed, 18 Dec 2019 23:00:00 GMT
etag: "5dfaaf70-5483"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash eb26af5aca3a481b714cd9c3d94f5447
690b91790414e30a9f5a8b92444a8ea1863edb3e
7074dccb10a29840e9feb90828ef3bb4684f58ad77cf3ad8f65f3d4317de2729
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: MISS
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Tue, 06 Sep 2022 04:55:16 GMT
Connection: keep-alive
X-N: S
fundacjarg.org.pl/wp-content/plugins/wp-lightbox-2/styles/lightbox.min.pl_PL.css?ver=1.3.4
91.231.140.77200 OK 2.4 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/wp-lightbox-2/styles/lightbox.min.pl_PL.css?ver=1.3.4
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (2124)
Hash 0097665de73a4a1dd1024443f0a2566c
c891280ce5df16099e99bc403a1ebf958d4f1c37
00c7f2c55bf07790132d252a88546a1c0362d964a458912f14ecb24375e61132
GET /wp-content/plugins/wp-lightbox-2/styles/lightbox.min.pl_PL.css?ver=1.3.4 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-895"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.classycountdown.css?ver=1.1.0
91.231.140.77200 OK 14 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.classycountdown.css?ver=1.1.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with CRLF line terminators
Hash 738c69fcf3f223b8d97b0e1f7efa98a5
6cba706d29539674fc32f3cf220f3b6ac72ec9a8
6acde0181c89dfb08e366db31d367cd1b0655124d93c6320dd2ae273e3b83283
GET /wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.classycountdown.css?ver=1.1.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: W/"204-5462a06c99c00"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/shortcode.css?ver=1.6.0
91.231.140.77200 OK 87 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/shortcode.css?ver=1.6.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type assembler source, ASCII text, with CRLF line terminators
Hash 39e4577c03d6a59021183b21e629165b
0669a5b73ec1f4ba870c53a03997dd5de08e0e6f
97dc319c3d962ef92746ac5489caecc283d087e896be9e022d4c8db92f66eb48
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/css/shortcode.css?ver=1.6.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-179aa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 29 Aug 2023 23:02:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: 6fz6C88YLD0zrDgQWE8WbxUG/2QD+QJb5c3Bqi5EOEiYGzUgoHH9EDt5l3xqbMjKQGMAVO6FQr4s7IUQKPFUsA==
priority: u=3,i
content-length: 827
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2905)
Hash a7e668c44c1c44a7eb82bf24800ff5e9
6f2393e5cf5ef26d6a6d661b7856ffcd273a63a6
ad110540fa27e40a9cf3de4aa42ca9632f03a622b73fe41b19f633fe81d6eaea
GET /rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 30 Aug 2023 03:18:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: p+ZoxEwcRKfrgr8kgA/16Q==
x-fb-debug: mCtcf9PLHTkSIqO5xU+7FoKtHXdlIowwP7BzCXO85B+EV0QrtccJAySH3hOLkmi0ZKCLDH3BKHwex4ndpbf7TA==
priority: u=3,i
content-length: 8358
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 30 Aug 2023 23:54:58 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: zd3gLYibMLVgTg1O+vGQKb1MUd9cBl68UbmwxABRKkyquumONApMAWSEbB1ZHfgksaB6H+t1p18knFmalg76HQ==
content-length: 338
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yQ/r/ifJqquhieUG.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 9.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yQ/r/ifJqquhieUG.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (9886)
Hash ed1095fc3d9a4c8ae24db874ba983b9b
92f90403959cb0cd4a598a166d3ffc7bff41fc2b
877fdb028d8e82d4553c435d1a4f27fbaf577b88b25eee2e7aaeea95d543ed0f
GET /rsrc.php/v3/yQ/r/ifJqquhieUG.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 30 Aug 2023 04:32:32 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 7RCV/D2aTIriTbh0upg7mw==
x-fb-debug: +Ha+DfMz3qRaLqiDDcalWcIlmI8iCCvfKtUqJdVYaUQWQTMB2AGMLA0TmYI8aLrfj71Epj+rU2UuZyTF3YG3yg==
priority: u=3,i
content-length: 9049
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (41977)
Hash 3ce46348c6edab150e0c6f8ce7cd0a0d
6aea70ed9afc6f514f89c0bca5a99f04c331bc24
8ac7aadd7e52746a466b2721699b1430ab4360c52d4c73dab9f51a849b73857d
GET /rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 30 Aug 2023 03:04:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PORjSMbtqxUODG+M580KDQ==
x-fb-debug: 9k3KItzK+jyAlGUsl/EXGcRbDeLNjImcDRno3dv/GPOkIYeATdfHl02vY06eIXionZNV9G0/9BkdN/Up+tBbyw==
priority: u=3,i
content-length: 23301
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 02 Sep 2023 10:34:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: 86y3i3sy9jjDaSwZdKwWDNfT0jhSZgIC/wO/r6UsDn/zT5AA7hVmL+J1eWzgzylntf4RiG+L/nvUQSjPsoquGQ==
priority: u=3,i
content-length: 7236
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/l/0,cross/3qxx1w_4YTJ.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 20 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/l/0,cross/3qxx1w_4YTJ.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21049)
Hash a8d4227d8058fb64a24a78f853cc1d19
3fb0554a96bf4c24246e3025df3c14f4110d2173
b3a707b61fd253f9c17ec15432ea6dd27cbb132f10b8a7c460c663f2dc8369b1
GET /rsrc.php/v3/yL/l/0,cross/3qxx1w_4YTJ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 05 Sep 2023 15:28:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: CKqjYEGudJR1oBJFxs/YVQ==
x-fb-debug: /Q3qHPbJBrIYpAAyzqi3+fkPocXDOJpLhzeZuQ13HMEVMgwm2F69U84dKnoEZ7EBTTJ9aCcfMPNQXF7EWBuJsw==
content-length: 5077
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 29 Aug 2023 21:51:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: R+zzX7WmRf1X+q8q6BPoX98sZT9HHmBK8mBuiUDRylG8YQE2dqj5AWC1p+a8DynhyN64NvyDA/IKk4p+bhwmbA==
priority: u=3,i
content-length: 1657
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5261)
Hash 6059f2908fc78af36d89f372311116ef
431905421a858f26f5624203b0ecae7b6d8c6c42
33ba2a807c3a7a85d489d24e1a843c4361a791492fdbe68e471d2064155467f0
GET /rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 04 Sep 2023 16:13:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YFnykI/HivNtifNyMREW7w==
x-fb-debug: YQs2aq0nbp/h3uDN50vOAPYPOO9T0HhyH1PWoVMTwJQK2rLx7waDuFvPjsk03f6R49nuVvhhc5xcc6nt55ozyA==
priority: u=3,i
content-length: 12179
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw3aXpsog.woff2
142.250.74.163200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw3aXpsog.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10280, version 1.0\012- data
Hash 21601a1a9acf15834a3a4d6e1ebecd31
77bbd40e1c573cf739aa4cc6d13b4aa242b94e02
a663bd9875a804b8fe52b9f3b8518d94948327122fa881289bd8cfc1fc96c427
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw3aXpsog.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fundacjarg.org.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:36:41 GMT
expires: Fri, 01 Sep 2023 06:36:41 GMT
cache-control: public, max-age=31536000
age: 425915
last-modified: Mon, 11 Jul 2022 18:59:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/11/slider_pomagamy2-1.jpg
91.231.140.77200 OK 285 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/11/slider_pomagamy2-1.jpg
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1200x400, components 3\012- data
Size 285 kB (284821 bytes)
Hash 20c64ced1260a9d298bf1692f18dfaaa
2b346bd97212d65d9c87f0939da6cefd0829bd5e
7788c5b33509a061a828b582a377059e170f5688262a93aeff76946effd68de7
GET /wp-content/uploads/2016/11/slider_pomagamy2-1.jpg HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:16 GMT
content-type: image/jpeg
content-length: 284821
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-45895"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/11/tlo_podopieczni.jpg
91.231.140.77200 OK 319 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/11/tlo_podopieczni.jpg
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1200x400, components 3\012- data
Size 319 kB (319108 bytes)
Hash 19ba60332eb6bd6e4c9bddc62f849469
070e245607f2430a889bd675727d7fc98651c48c
d90c8cad1d3d79cc9119af23b64c8170dafc9d0c5f84ae5b510802757b665508
GET /wp-content/uploads/2016/11/tlo_podopieczni.jpg HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:16 GMT
content-type: image/jpeg
content-length: 319108
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-4de84"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
platnosci.ngo.pl/platnosci/temppreview/1270?
212.244.112.13200 OK 26 kB URL HTTP/1.1 platnosci.ngo.pl/platnosci/temppreview/1270?
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash b5f6cbe5994052e085b81a7c7bf9e2ce
657d63f0ac6669ba3db255fcc52f9f933574f4a4
9739525eee4ce478078f53abaee697227cff4cd6edc1957e482a57bb15dbe24e
GET /platnosci/temppreview/1270? HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private,no-cache, must-revalidate
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/8.5
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 26135
fundacjarg.org.pl/wp-content/plugins/smart-slider-3/library/media/plugins/widgetshadow/shadow/shadow/shadow/centered.png
91.231.140.77200 OK 2.2 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/smart-slider-3/library/media/plugins/widgetshadow/shadow/shadow/shadow/centered.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type PNG image data, 1120 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 426112d24a519cd42d161c0b0053f728
6b1a452d27ea13c78309f81f69e3266620a810f9
77259287d2a352e38ca10e2df407f22fe92be9bdcfe28326460610fc33699eb2
GET /wp-content/plugins/smart-slider-3/library/media/plugins/widgetshadow/shadow/shadow/shadow/centered.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:16 GMT
content-type: image/png
content-length: 2237
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-8bd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/11/slider_sport3.jpg
91.231.140.77200 OK 423 kB URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/11/slider_sport3.jpg
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1200x400, components 3\012- data
Size 423 kB (423101 bytes)
Hash 3376caced010b6bf3e5479bfc33bb819
e25f9255258f8e2cdc115592cd84b399392cbde1
f2185d007c242ff86b53b52d474ba5a2a424db0cb2df3e50126df194528093aa
GET /wp-content/uploads/2016/11/slider_sport3.jpg HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:16 GMT
content-type: image/jpeg
content-length: 423101
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-674bd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
platnosci.ngo.pl/Content/Homer/vendor/bootstrap/dist/css/bootstrap.css
212.244.112.13200 OK 21 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/vendor/bootstrap/dist/css/bootstrap.css
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash 9e5da7e284eb23fa0aa11d0338584edc
7a924fe0cf1f0a9dbf315d65a8027d77992b075f
5c875b0d46278694ec704e6cc6ff1c5be3b36ebb08b616ac9bb7af84b3e79cb6
GET /Content/Homer/vendor/bootstrap/dist/css/bootstrap.css HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:39 GMT
Accept-Ranges: bytes
ETag: "808f1ee4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 20789
platnosci.ngo.pl/Content/Application/css/campaign.css
212.244.112.13200 OK 5.1 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Application/css/campaign.css
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 2ff5699b34a6de68d18be8963aa4464f
4b96a7be5ceec0d5cf05839300f7e7a790319caf
702b2ce4f1ac5e9245bdbfeb72ad78c99adc046c2d20809ec5487bf440a90660
GET /Content/Application/css/campaign.css HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:39 GMT
Accept-Ranges: bytes
ETag: "808f1ee4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 5125
platnosci.ngo.pl/Content/Homer/vendor/toastr/build/toastr.min.css
212.244.112.13200 OK 2.7 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/vendor/toastr/build/toastr.min.css
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with very long lines (5737), with CRLF line terminators
Hash bec32b479e8b14cffed9026fb5a5cb36
2e23221212bcfdf29f2b334bc20c75900ddaf968
440a943a5b375b84a96c88ad378cb7e8666e4504903fde2b025d53b12334ddac
GET /Content/Homer/vendor/toastr/build/toastr.min.css HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 2697
platnosci.ngo.pl/Scripts/jquery.validate.js
212.244.112.13200 OK 12 kB URL HTTP/1.1 platnosci.ngo.pl/Scripts/jquery.validate.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1239), with CRLF line terminators
Hash 1867d6efdc3420ce181a8a41b7cf8848
2e992b7ed8d786c265c5416e27004125a229b1e5
2371785401bae322c7363120918a1076ecaea7b583d2d2ce76d0debdeb4fcf8e
GET /Scripts/jquery.validate.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 11537
static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
Hash c02dd13140ce11f9422c642ef4c87bdb
a2fc328e69aa333d8fc34f825f2951c2caf30721
851c0fd239185fe417f8e14e120f872640302056fe834a0882e6fde52a640ac4
GET /rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 30 Aug 2023 20:19:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Fibo6ChZjgbM0MR+VbQjBA==
x-fb-debug: yKgrNO5aL8jb+7is7cpv3zTmYQAs08YuQEYt5P+/ugofGKtiaHzZqAKhY0ZhHozTJkXIPPQp216/kp+p01E//g==
content-length: 15844
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y3/r/6eAM8p9VdYI.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y3/r/6eAM8p9VdYI.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
Hash dafbd1857eaf15a08f2831c729d1297d
08a128e650e87bac19d10f46475886926ba31ca6
6bfaece89b7cc81113c11f9b359cf59546f71abc73ee4712229ecf77d320561a
GET /rsrc.php/v3/y3/r/6eAM8p9VdYI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 02 Sep 2023 03:41:48 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: mpfrgJPvgm+iFDegmTagRg==
x-fb-debug: mkwmxajbTuH4U+7dun8Rr36AHO16wNvTOQW+X19pdiSIzQJzF0qDO3G0t/pXZuUhf6TuLdlGAzWBDjGcpiJRtw==
content-length: 90719
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 04:55:16 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
platnosci.ngo.pl/Content/Homer/vendor/sweetalert/lib/sweet-alert.css
212.244.112.13200 OK 2.1 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/vendor/sweetalert/lib/sweet-alert.css
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with CRLF line terminators
Hash 70fa34feb7ec3d0b4c1289430c2e08b6
4565dcbb559fbec7ad187062737610c2ce6160f0
97797d4f27aa7b6d2224794f5ce1d32f19ecadaa8aece88b8ce10406b5e6d83e
GET /Content/Homer/vendor/sweetalert/lib/sweet-alert.css HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 2083
platnosci.ngo.pl/Content/Application/js/fingerprint2.js
212.244.112.13200 OK 17 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Application/js/fingerprint2.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with very long lines (329), with CRLF line terminators
Hash 7f70579272df4602dc5f5ba87665db60
3d8122bd286ae1010bf3db2551ad62e901e141f9
eba37a2abd02fdf9f863f7bb62f30212b3b0042101de8a464d0caff2507f8b88
GET /Content/Application/js/fingerprint2.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:39 GMT
Accept-Ranges: bytes
ETag: "808f1ee4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 16722
platnosci.ngo.pl/Scripts/App/main.js
212.244.112.13200 OK 5.4 kB URL HTTP/1.1 platnosci.ngo.pl/Scripts/App/main.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type Unicode text, UTF-8 (with BOM) text, with very long lines (347), with CRLF line terminators
Hash 26ce69b18615581cfc98d0ba56d7bfbb
cbed854fbf16229435d208b2d2535c1d2e05ba52
ab6c0706f0f82df4a7351c320ebf8aa63572a631a8820916a56d75cdd591d2dd
GET /Scripts/App/main.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 5365
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 200a52cd9adff92e7f93f2f27d1e76de
20f03345a4356f228ebf907e384dc9488e45de0c
0eedc1deccfecfd71d53dfd26fabbc8f33ef6bc778a3aba7b573b8fcfeaf6622
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "0EEDC1DECCFECFD71D53DFD26FABBC8F33EF6BC778A3ABA7B573B8FCFEAF6622"
Last-Modified: Mon, 05 Sep 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=897
Expires: Tue, 06 Sep 2022 05:10:13 GMT
Date: Tue, 06 Sep 2022 04:55:16 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 200a52cd9adff92e7f93f2f27d1e76de
20f03345a4356f228ebf907e384dc9488e45de0c
0eedc1deccfecfd71d53dfd26fabbc8f33ef6bc778a3aba7b573b8fcfeaf6622
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "0EEDC1DECCFECFD71D53DFD26FABBC8F33EF6BC778A3ABA7B573B8FCFEAF6622"
Last-Modified: Mon, 05 Sep 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=812
Expires: Tue, 06 Sep 2022 05:08:48 GMT
Date: Tue, 06 Sep 2022 04:55:16 GMT
Connection: keep-alive
platnosci.ngo.pl/Content/Homer/styles/style.css
212.244.112.13200 OK 14 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/styles/style.css
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with CRLF line terminators
Hash 003c33a1dc82cdcad9d230057d8ba0b6
0a2af5e5244114eef23df3d5ae491b1e2c65f4f9
5fcbe712431bed53ddaecf06331bad638d13e18e9b94cf14a2f3004d9fe248c5
GET /Content/Homer/styles/style.css HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:39 GMT
Accept-Ranges: bytes
ETag: "808f1ee4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 13655
platnosci.ngo.pl/Scripts/App/form.js
212.244.112.13200 OK 1.7 kB URL HTTP/1.1 platnosci.ngo.pl/Scripts/App/form.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash fcf45b46f68c47131f81e6b933cf7303
0a36df5e7e25bc4fe73e0cac5df260335fd0b892
726944dc42460af70eb6cf71d5ffe9755129e44200e62e20d6357e4b3de4f487
GET /Scripts/App/form.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 1721
platnosci.ngo.pl/Content/Homer/vendor/toastr/build/toastr.min.js
212.244.112.13200 OK 1.7 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/vendor/toastr/build/toastr.min.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with very long lines (4285), with CRLF line terminators
Hash b8237b766a64fd69e17bef631237bcf9
e6ad93f201a48917529859a595ffc64944234052
1554e4f1610aabd71e1723ea3f1d3aa7701c37444b288627c9e1c07de492680d
GET /Content/Homer/vendor/toastr/build/toastr.min.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 1679
secure.payu.com/res/v2/plugin-token-2.1.js
104.110.13.241200 OK 1.4 kB URL HTTP/2 secure.payu.com/res/v2/plugin-token-2.1.js
IP 104.110.13.241:0
File type ASCII text, with CRLF line terminators
Hash b4ed005cf952248c2ae44c2daa65ecf9
ca164340d42766e8318413c641dea4a8911ac162
689915028edf217b235cd7b3ba15f4b2090010f88e600ae2f0dd163a38ff9393
GET /res/v2/plugin-token-2.1.js HTTP/1.1
Host: secure.payu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Fri, 24 Jun 2022 07:40:36 GMT
etag: "587-5e22caf9b419f"
accept-ranges: bytes
content-length: 1415
content-encoding: gzip
vary: Accept-Encoding
access-control-allow-origin: *
content-type: text/javascript
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=45
expires: Tue, 06 Sep 2022 04:56:01 GMT
date: Tue, 06 Sep 2022 04:55:16 GMT
X-Firefox-Spdy: h2
secure.payu.com/res/v2/openpayu-2.1.js
104.110.13.241200 OK 4.9 kB URL HTTP/2 secure.payu.com/res/v2/openpayu-2.1.js
IP 104.110.13.241:0
File type ASCII text, with very long lines (937)
Hash bdb0b7c36513a93b64ab28b9d582f53c
0e698ce1f511b1550a45fa7fd453dc0d6ac02d86
a97c58f57ca6558f23c6f1ee2565868e55bbb8a2aaae719c74e7ce9e3d18b402
GET /res/v2/openpayu-2.1.js HTTP/1.1
Host: secure.payu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Fri, 24 Jun 2022 07:40:36 GMT
etag: "1347-5e22caf9b39cf"
accept-ranges: bytes
content-length: 4935
content-encoding: gzip
vary: Accept-Encoding
access-control-allow-origin: *
content-type: text/javascript
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=63
expires: Tue, 06 Sep 2022 04:56:19 GMT
date: Tue, 06 Sep 2022 04:55:16 GMT
X-Firefox-Spdy: h2
platnosci.ngo.pl/Content/Homer/vendor/bootstrap/js/tooltip.js
212.244.112.13200 OK 4.1 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/vendor/bootstrap/js/tooltip.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with CRLF line terminators
Hash 243a8ab4d75f0b3f682b74c7b4364a48
8d909d7d0c6fe3444ada5325eb579096b6f6921a
9f4d86d1865544a8a6c7699e45a9668017805b2132e6b3ab5484158b49106e1e
GET /Content/Homer/vendor/bootstrap/js/tooltip.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:39 GMT
Accept-Ranges: bytes
ETag: "808f1ee4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 4072
platnosci.ngo.pl/Content/Homer/vendor/bootstrap/js/popover.js
212.244.112.13200 OK 1.2 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/vendor/bootstrap/js/popover.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with CRLF line terminators
Hash 66fb3debb6f1bffda229f53bdd1aab8e
0eb9193bb93be840afec9812c5b2e60a5abe6707
1a27ee174ce058940fa0e0ebc6e350e10311c1a25302f306c2dc71ac14339381
GET /Content/Homer/vendor/bootstrap/js/popover.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:39 GMT
Accept-Ranges: bytes
ETag: "808f1ee4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 1203
platnosci.ngo.pl/Content/Application/js/jquery.maskedinput.min.js
212.244.112.13200 OK 2.6 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Application/js/jquery.maskedinput.min.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3824), with CRLF line terminators
Hash 62cb73b55bf2ee2c3ba1b3740afacb69
b254f4f23a315d83cfdcc84ab2f30aa4e9b1f7ab
bac8faa52c817756a8c8d1a8af780927b577e9675dc2078e346e6e5b3ccbe069
GET /Content/Application/js/jquery.maskedinput.min.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:39 GMT
Accept-Ranges: bytes
ETag: "808f1ee4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 2637
platnosci.ngo.pl/Content/Homer/vendor/jquery/dist/jquery.min.js
212.244.112.13200 OK 30 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Homer/vendor/jquery/dist/jquery.min.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type ASCII text, with very long lines (32180), with CRLF line terminators
Hash 4f0b19496a604c534272dd53ad1e3ca3
c7ba13aae0ce7915d8782f4861a909a2a0a54a19
718708564ccbea71bfa1e53f6b4fb71d3e8ca5c460ff167f4107a5d9bb13b29e
GET /Content/Homer/vendor/jquery/dist/jquery.min.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Jun 2021 06:51:40 GMT
Accept-Ranges: bytes
ETag: "026b7e4b261d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 29622
fundacjarg.org.pl/wp-content/plugins/wp-accessibility-helper/css/wp-accessibility-helper.min.css?ver=6.0.2
91.231.140.77200 OK 4.9 kB URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/wp-accessibility-helper/css/wp-accessibility-helper.min.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
File type ASCII text, with very long lines (5709)
Hash 03601eed390637ab1e665b3f470afd21
2897ee99e92848b63361cc69e925139f3f05b447
4fc88b3574e6e05171c2dd71ed2e85fb8a7bb27cc6060378dc088a9029f51ea9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-accessibility-helper/css/wp-accessibility-helper.min.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Mon, 30 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"588fc570-164e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
platnosci.ngo.pl/Scripts/App/cycledformvalidator.js
212.244.112.13200 OK 1.7 kB URL HTTP/1.1 platnosci.ngo.pl/Scripts/App/cycledformvalidator.js
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 529b89cb3340e4df84eb0b0a5527223a
665ddae777aba2923c5d71efb7e9fbe31ca5cb35
aecc344a21682b14cdad13f1c39677152bf24811e7c4bf26459fde7b3f5de201
GET /Scripts/App/cycledformvalidator.js HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 02 Feb 2022 09:48:21 GMT
Accept-Ranges: bytes
ETag: "80603d31a18d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 1667
secure.payu.com/res/v2/tunnel.html
104.110.13.241200 OK 652 B URL HTTP/2 secure.payu.com/res/v2/tunnel.html
IP 104.110.13.241:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 11c83c2acd559f7e3d5bda15daaab95c
1272503291babba1379e0ad6e6d24ef36f955e1a
76603e47d2be319b60b67f480b3dcfe157654a3b96491a1370cfdab694e2edd4
GET /res/v2/tunnel.html HTTP/1.1
Host: secure.payu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Fri, 24 Jun 2022 07:40:36 GMT
etag: "28c-5e22caf9b225f"
accept-ranges: bytes
content-length: 652
content-encoding: gzip
vary: Accept-Encoding
access-control-allow-origin: *
content-type: text/html
pragma: no-cache
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, must-revalidate
expires: Tue, 06 Sep 2022 04:55:17 GMT
date: Tue, 06 Sep 2022 04:55:17 GMT
X-Firefox-Spdy: h2
platnosci.ngo.pl/Content/Upload/Kampanie/kampania_img_1270.jpg
212.244.112.13200 OK 662 kB URL HTTP/1.1 platnosci.ngo.pl/Content/Upload/Kampanie/kampania_img_1270.jpg
IP 212.244.112.13:0
ASN #5617 Orange Polska Spolka Akcyjna
Size 662 kB (661773 bytes)
Hash 596edd6478050e4a16341eadea6af851
230627561c1fdbf414afa2db989d974d9c1e9fbc
e03f3f5455303a028ee8495c321b6c7fdd1734e2d97a7fd6a27495005b975d23
GET /Content/Upload/Kampanie/kampania_img_1270.jpg HTTP/1.1
Host: platnosci.ngo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://platnosci.ngo.pl/platnosci/temppreview/1270?
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Content-Type: image/jpeg
Last-Modified: Thu, 19 Apr 2018 07:21:54 GMT
Accept-Ranges: bytes
ETag: "cda3c18afd7d31:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 06 Sep 2022 04:55:15 GMT
Content-Length: 657394
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a31159-2539-48f3-a417-78d00a149cfe.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a31159-2539-48f3-a417-78d00a149cfe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bc9a563730fb4169b5883ff84acf6f79
834038519e2249de90be0fe52899805663f9ee75
e7f587a281517b0eec1454b9c22031a4da7a82c315cc3c30ae6bec097844040d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a31159-2539-48f3-a417-78d00a149cfe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6161
x-amzn-requestid: 6e6b9c9c-5446-4e79-9a67-d4d887d80f52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfxGymoAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-7fef31a6098d77c1613e74bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HegykGV2xrZRknRCxguqholwj65B4GiD6W4RloqVXIlG06LMuemaog==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:03:39 GMT
age: 24703
etag: "834038519e2249de90be0fe52899805663f9ee75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-frontend.min.js?1484521200
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-frontend.min.js?1484521200
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-frontend.min.js?1484521200 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-13a35"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.countdown.min.js?ver=2.0.4
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.countdown.min.js?ver=2.0.4
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.countdown.min.js?ver=2.0.4 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-11c8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.twentytwenty.js?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.twentytwenty.js?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/magee-shortcodes/assets/js/jquery.twentytwenty.js?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-efc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-easy-pie-chart/jquery.easypiechart.min.js?ver=2.1.7
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-easy-pie-chart/jquery.easypiechart.min.js?ver=2.1.7
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/jquery-easy-pie-chart/jquery.easypiechart.min.js?ver=2.1.7 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-f96"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/cache/nextend/web/n2/n2.js?1602250770
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/cache/nextend/web/n2/n2.js?1602250770
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/nextend/web/n2/n2.js?1602250770 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Fri, 09 Oct 2020 13:39:30 GMT
vary: Accept-Encoding
etag: W/"5f806812-84b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.throttle.js?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.throttle.js?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.throttle.js?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: W/"2e3-5462a06c99c00"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/animate.css?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/animate.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/css/animate.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-11a43"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.waypoints.js?ver=2.0.5
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.waypoints.js?ver=2.0.5
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/magee-shortcodes/assets/js/jquery.waypoints.js?ver=2.0.5 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-4398"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.prettyPhoto.js?ver=3.1.6
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.prettyPhoto.js?ver=3.1.6
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/js/jquery.prettyPhoto.js?ver=3.1.6 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-89e0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/prettyPhoto.css?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/prettyPhoto.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/magee-shortcodes/assets/css/prettyPhoto.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-6c21"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/weathericons/css/weather-icons.min.css?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/weathericons/css/weather-icons.min.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/weathericons/css/weather-icons.min.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-6839"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.knob.js?ver=1.2.11
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.knob.js?ver=1.2.11
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.knob.js?ver=1.2.11 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-2b9f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.0
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 10:48:17 GMT
vary: Accept-Encoding
etag: W/"6315d3f1-222e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/wp-social-sharing/static/socialshare.js?ver=1.5
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/wp-social-sharing/static/socialshare.js?ver=1.5
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-social-sharing/static/socialshare.js?ver=1.5 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: W/"15c-5462a06c99c00"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/
91.231.140.77200 OK 0 B IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://fundacjarg.org.pl/wp-json/>; rel="https://api.w.org/", <https://fundacjarg.org.pl/wp-json/wp/v2/pages/21>; rel="alternate"; type="application/json", <https://fundacjarg.org.pl/>; rel=shortlink
set-cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; path=/
pll_language=pl; expires=Wed, 06-Sep-2023 04:55:15 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
x-powered-by: PHP/7.4.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/twentytwenty.css?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/twentytwenty.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/css/twentytwenty.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-1a28"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/wp-social-sharing/static/socialshare.css?ver=1.5
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/wp-social-sharing/static/socialshare.css?ver=1.5
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/wp-social-sharing/static/socialshare.css?ver=1.5 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-1b3e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/js/jquery.selectbox-0.2.min.js?ver=1.3.1
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/js/jquery.selectbox-0.2.min.js?ver=1.3.1
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-form-builder-lite/js/jquery.selectbox-0.2.min.js?ver=1.3.1 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587d5070-2440"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/js/skip-link-focus-fix.js?ver=20130115
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/js/skip-link-focus-fix.js?ver=20130115
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/themes/mediaphase-lite/js/skip-link-focus-fix.js?ver=20130115 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: W/"2fe-5462a06c99c00"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/js/fade.js?ver=20120206
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/js/fade.js?ver=20120206
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mediaphase-lite/inc/js/fade.js?ver=20120206 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: W/"23b-5462a06c99c00"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:44:22 GMT
vary: Accept-Encoding
etag: W/"6315d306-15b64"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/js/script.js?ver=20120206
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/themes/mediaphase-lite/inc/js/script.js?ver=20120206
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/themes/mediaphase-lite/inc/js/script.js?ver=20120206 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-7c2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/cache/nextend/web/n2-ss-2/n2-ss-2.css?1602250770
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/cache/nextend/web/n2-ss-2/n2-ss-2.css?1602250770
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/nextend/web/n2-ss-2/n2-ss-2.css?1602250770 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Fri, 09 Oct 2020 13:39:30 GMT
vary: Accept-Encoding
etag: W/"5f806812-4229"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/wp-accessibility-helper/js/wp-accessibility-helper.min.js?ver=1.0.0
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/wp-accessibility-helper/js/wp-accessibility-helper.min.js?ver=1.0.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-accessibility-helper/js/wp-accessibility-helper.min.js?ver=1.0.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587d5070-1756"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/smart-slider-3/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min.js?1484521200
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/smart-slider-3/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min.js?1484521200
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/smart-slider-3/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min.js?1484521200 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-3bfd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
pcrf.pl/nowa/wp-content/themes/minimal/framework/images/submenu.png
85.128.238.82404 Not Found 0 B URL HTTP/2 pcrf.pl/nowa/wp-content/themes/minimal/framework/images/submenu.png
IP 85.128.238.82:0
ASN #15967 Nazwa.pl Sp.z.o.o.
GET /nowa/wp-content/themes/minimal/framework/images/submenu.png HTTP/1.1
Host: pcrf.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 06 Sep 2022 04:55:17 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://pcrf.pl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
age: 2
server: Apache/2
x-cdn-nazwa.pl-location: AMS
x-cdn-nazwa.pl-policyused: app=no-cache
x-cdn-nazwa.pl-age: 2
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/uploads/2016/04/boccia300.png
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/uploads/2016/04/boccia300.png
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/uploads/2016/04/boccia300.png HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: image/png
content-length: 9896
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
etag: "587bfef0-26a8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/chart.min.js?ver=2.1.4
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/chart.min.js?ver=2.1.4
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/js/chart.min.js?ver=2.1.4 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-4e0a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/css/frontend.css?ver=1.3.1
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/css/frontend.css?ver=1.3.1
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/ultimate-form-builder-lite/css/frontend.css?ver=1.3.1 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587d5070-a584"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-webfontloader.min.js?1484521200
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-webfontloader.min.js?1484521200
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-webfontloader.min.js?1484521200 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-2fea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.event.move.js?ver=1.3.6
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/jquery.event.move.js?ver=1.3.6
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/js/jquery.event.move.js?ver=1.3.6 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-3975"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.classycountdown.min.js?ver=1.1.0
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.classycountdown.min.js?ver=1.1.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/magee-shortcodes/assets/jquery-countdown/jquery.classycountdown.min.js?ver=1.1.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-4a18"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:48:17 GMT
vary: Accept-Encoding
etag: W/"6315d3f1-14d6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-6b9b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/audioplayer.css?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/css/audioplayer.css?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/plugins/magee-shortcodes/assets/css/audioplayer.css?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-182c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/audioplayer.js?ver=6.0.2
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/audioplayer.js?ver=6.0.2
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/js/audioplayer.js?ver=6.0.2 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-2207"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/js/frontend.js?ver=1.3.1
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/ultimate-form-builder-lite/js/frontend.js?ver=1.3.1
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-form-builder-lite/js/frontend.js?ver=1.3.1 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587d5070-1019"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/cache/nextend/web/n2-ss-2/n2-ss-2.js?1602250770
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/cache/nextend/web/n2-ss-2/n2-ss-2.js?1602250770
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
GET /wp-content/cache/nextend/web/n2-ss-2/n2-ss-2.js?1602250770 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Fri, 09 Oct 2020 13:39:30 GMT
vary: Accept-Encoding
etag: W/"5f806812-16b6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/magee-modal.js?ver=1.6.0
91.231.140.77200 OK 0 B URL HTTP/2 fundacjarg.org.pl/wp-content/plugins/magee-shortcodes/assets/js/magee-modal.js?ver=1.6.0
IP 91.231.140.77:0
ASN #61154 IntegraDesign, Mariusz Barczyk
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magee-shortcodes/assets/js/magee-modal.js?ver=1.6.0 HTTP/1.1
Host: fundacjarg.org.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fundacjarg.org.pl/
Cookie: PHPSESSID=r29srg45kvhq7h492lgducqvp9; pll_language=pl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:55:15 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2017 23:00:00 GMT
vary: Accept-Encoding
etag: W/"587bfef0-75b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2